Pinned Repositories
520apkhook
对安卓APP注入MSF PAYLOAD,并且对手机管家进行BYPASS。
About-Attack
一个旨在通过应用场景 / 标签对 Github 红队向工具 / 资源进行分类收集,降低红队技术门槛的手册【持续更新】
AM0N-Eye
AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
ARL
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
backdoor-apk
backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool, the Android SDK, smali, etc. This shell script is provided as-is without warranty of any kind and is intended for educational purposes only.
BadCode
恶意代码逃逸源代码 http://payloads.online
go-shellcode
A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques.
PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
libaizaishuijiao's Repositories
libaizaishuijiao/AM0N-Eye
libaizaishuijiao/BehinderClientSource
❄️冰蝎客户端源码-V4.0.6🔞
libaizaishuijiao/CVE-2022-21971
PoC for CVE-2022-21971 "Windows Runtime Remote Code Execution Vulnerability"
libaizaishuijiao/CVE-2022-39197
CobaltStrike <= 4.7.1 RCE
libaizaishuijiao/FreeFRP
通过fofa、hunter、shadon导出frp服务器地址,找出未设置密码的frp服务器(白嫖)
libaizaishuijiao/fuso
一款快速, 稳定, 高效, 轻量的内网穿透, 端口转发工具
libaizaishuijiao/go-shellcode-loader
GO免杀shellcode加载器混淆AES加密
libaizaishuijiao/JSPHorse
结合反射调用、动态编译、BCEL、defineClass0,ScriptEngine、Expression等技术的一款免杀JSP Webshell生成工具
libaizaishuijiao/LiqunKit_
libaizaishuijiao/noELF
Linux下用于远程加载可执行文件以达到内存加载的目的
libaizaishuijiao/PoC-CVE-2022-30190
libaizaishuijiao/presshell
🚪 Quick & dirty Wordpress Command Execution Shell
libaizaishuijiao/ProtectMyTooling
Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it with your implant, it does a lot of sneaky things and spits out obfuscated executable.
libaizaishuijiao/RdViewer
一款支持自建服务器的免费远控神器
libaizaishuijiao/RequestTemplate
双语双端内网扫描以及验证工具
libaizaishuijiao/scaninfo
fast scan for redtools
libaizaishuijiao/SharpWxDump
微信客户端取证,可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录));支持获取多用户信息,不定期更新新版本偏移,目前支持所有新版本、正式版本
libaizaishuijiao/ShellcodeLoader
该项目为Shellocde加载器,详细介绍了我们如何绕过防病毒软件,以及该工具如何使用
libaizaishuijiao/ShiroAttack2
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
libaizaishuijiao/sl0ppy-defender-evasion
evasion of defender
libaizaishuijiao/sshdHooker
一键注入SSHD进程记录并发送ssh登录的密码
libaizaishuijiao/SuperRDP
Super RDPWrap
libaizaishuijiao/traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
libaizaishuijiao/usefull-code
usefull-code
libaizaishuijiao/vcenter_saml_login
A tool to extract the IdP cert from vCenter backups and log in as Administrator
libaizaishuijiao/wabt
The WebAssembly Binary Toolkit
libaizaishuijiao/webapp-wordlists
This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version.
libaizaishuijiao/wechat-export
获取微信聊天记录数据库密钥并导出聊天记录,各版本通用。
libaizaishuijiao/wsMemShell
一种全新的内存马
libaizaishuijiao/ZheTian
ZheTian 免杀shellcode执行程序