Pinned Repositories
awesome-cloud-native-security
awesome resources about cloud native security 🐿
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
goagent_out_of_box_yang
this is the newest goagent with yangyang's settings for floks who are not good at computer, yes, out of box.
ivre
Network recon framework.
KCon
KCon is a famous Hacker Con powered by Knownsec Team.
LALIN
this script automatically install any package for pentest with uptodate tools , and lazy command for run the tools like lazynmap , install another and update to new #actually for lazy people hahaha #and Lalin is remake the lazykali with fixed bugs , added new features and uptodate tools . It's compatible with the latest release of Kali (Rolling)
learn_python3_spider
python爬虫教程系列、从0到1学习python爬虫,包括浏览器抓包,手机APP抓包,如 fiddler、mitmproxy,各种爬虫涉及的模块的使用,如:requests、beautifulSoup、selenium、appium、scrapy等,以及IP代理,验证码识别,Mysql,MongoDB数据库的python使用,多线程多进程爬虫的使用,css 爬虫加密逆向破解,JS爬虫逆向,分布式爬虫,爬虫项目实战实例等
nosqlpot
The NoSQL Honeypot Framework
Password-Cracking-Suite
pedump
dump windows PE files using ruby
lordlight's Repositories
lordlight/supply-chain-interdependency-tool
lordlight/Active-Directory-Pentest-Notes
大佬的安全域渗透学习笔记
lordlight/AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
lordlight/AssetManage
基于Agent的资产管理和自动发现工具
lordlight/ATTCK-PenTester-Book
ATTCK-PenTester-Book
lordlight/bayonet
bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统
lordlight/burpJsEncrypter
More Easier Burp Extension To Solve Javascript Front End Encryption,一款更易使用的解决前端加密问题的Burp插件。
lordlight/bypass-firewalls-by-DNS-history
Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.
lordlight/Fortify
源代码漏洞の审计
lordlight/FUSE
A penetration testing tool for finding file upload bugs (NDSS 2020)
lordlight/htbenum
A Linux enumeration script for Hack The Box Linux信息搜集工具
lordlight/Http-Asynchronous-Reverse-Shell
[POC] Asynchronous reverse shell using the HTTP protocol.
lordlight/huginn
Create agents that monitor and act on your behalf. Your agents are standing by!
lordlight/Knowledge-Base
Knowledge Base 慢雾安全团队知识库
lordlight/LKWA
Lesser Known Web Attack Lab
lordlight/pspy
Monitor linux processes without root permissions
lordlight/radar
实时风控引擎(Risk Engine),自定义规则引擎(Rule Script),完美支持中文,适用于反欺诈(Anti-fraud)应用场景,开箱即用!!!移动互联网时代的风险管理利器,你 Get 到了吗?
lordlight/RedELK
Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
lordlight/RedTeam-Tactics-and-Techniques
Red Teaming Tactics and Techniques
lordlight/SecurityBaselineCheck
lordlight/SharpNetCheck
在内网渗透过程中,对可以出网的机器是十分渴望的。在收集大量弱口令的情况下,一个一个去测试能不能出网太麻烦了。所以就有了这个工具,可配合如wmiexec、psexec等横向工具进行批量检测,该工具可以在dnslog中回显内网ip地址和计算机名,可实现内网中的快速定位可出网机器。
lordlight/SharpToolsAggressor
内网渗透中常用的c#程序整合成cs脚本,直接内存加载。持续更新~
lordlight/Voyager
一个安全工具集合平台,用来提高乙方安全人员的工作效率,请勿用于非法项目
lordlight/vulstudy
使用docker快速搭建各大漏洞靶场,目前可以一键搭建17个靶场。
lordlight/win-exp-
windwos辅助提权脚本
lordlight/windows-emergency-servicetools
windows下一款可视化,一键检测的应急服务工具。
lordlight/windows_version_check
Windows操作系统版本检测工具,如果网络可达,Windows Server 2003 R2及其以上版本的 操作系统版本识别率理论上能达以100%
lordlight/WindowsVulnScan
lordlight/XCTR-Hacking-Tools
XCTR Hacking Tools
lordlight/xencrypt
A PowerShell script anti-virus evasion tool