Pinned Repositories
Active-Directory-Pentest-Notes
个人域渗透学习笔记
ADACLScanner
Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory
aesburp
Burp Extension to manipulate AES encrypted payloads
Analysis-Tools
恶意软件分析套件
Android-InsecureBankv2
Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities
APTnotes
Various public documents, whitepapers and articles about APT campaigns
aquatone
A Tool for Domain Flyovers
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
fuzzdb
一个fuzzdb扩展库
linux-exploit-suggester
Linux privilege escalation auditing tool
hiw0rld's Repositories
hiw0rld/Active-Directory-Pentest-Notes
个人域渗透学习笔记
hiw0rld/ADACLScanner
Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory
hiw0rld/aesburp
Burp Extension to manipulate AES encrypted payloads
hiw0rld/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
hiw0rld/ATTACK-Tools
Utilities for MITRE™ ATT&CK
hiw0rld/BloodHound
Six Degrees of Domain Admin
hiw0rld/bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
hiw0rld/collection-document
Collection of quality safety articles
hiw0rld/commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com
hiw0rld/data
APTnotes data
hiw0rld/dpia
GDPR个人数据合规评估
hiw0rld/Gitbook
Markdown Gitbook
hiw0rld/github-slideshow
A robot powered training repository :robot:
hiw0rld/GitMAD
Monitor, Alert, and Discover sensitive info and data leakage on Github.
hiw0rld/GTFOBins.github.io
Curated list of Unix binaries that can be exploited to bypass system security restrictions
hiw0rld/hiw0rld.github.com
Hi World
hiw0rld/hiw0rld.github.io
hiw0rld/injection
hiw0rld/Invoke-SocksProxy
Socks proxy server using powershell.
hiw0rld/IPRotate_Burp_Extension
Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
hiw0rld/openstar
lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx
hiw0rld/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
hiw0rld/pentest-tools
Custom pentesting tools
hiw0rld/pingcastle
PingCastle - Get Active Directory Security at 80% in 20% of the time
hiw0rld/pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python
hiw0rld/Red-Teaming-Toolkit
A collection of open source and commercial tools that aid in red team operations.
hiw0rld/RedTeam-BCS
BCS(北京网络安全大会)2019 红队行动会议重点内容
hiw0rld/sks
Security Knowledge Structure(安全知识汇总)
hiw0rld/SwiftnessX
A cross-platform note-taking & target-tracking app for penetration testers.
hiw0rld/xalpha
基金投资管理回测引擎