power-sploit's Stars
maurosoria/dirsearch
Web path scanner
moonD4rk/HackBrowserData
Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
knownsec/404StarLink
404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目
Hackplayers/evil-winrm
The ultimate WinRM shell for hacking/pentesting
tr0uble-mAker/POC-bomber
利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点
JustasMasiulis/lazy_importer
library for importing functions from dlls in a hidden, reverse engineer unfriendly way
threatexpress/malleable-c2
Cobalt Strike Malleable C2 Design and Reference Guide
k8gege/LadonGo
Ladon for Kali 全平台开源内网渗透扫描器,Windows/Linux/Mac/路由器内网渗透,使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost,远程执行SSH/Winrm,密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis,端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机,端口扫描服务识别PortScan。
jthuraisamy/SysWhispers2
AV/EDR evasion via direct system calls.
klezVirus/SysWhispers3
SysWhispers on Steroids - AV/EDR evasion via direct system calls.
1n7erface/Template
Next generation RedTeam heuristic intranet scanning | 下一代RedTeam启发式内网扫描
mgeeky/ThreadStackSpoofer
Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.
boy-hack/ksubdomain
Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second
redtoolskobe/scaninfo
fast scan for redtools
ropnop/impacket_static_binaries
Standalone binaries for Linux/Windows of Impacket's examples
xuanxuan0/DripLoader
Evasive shellcode loader for bypassing event-based injection detection (PoC)
f0ng/poc2jar
Java编写,Python作为辅助依赖的漏洞验证、利用工具,添加了进程查找模块、编码模块、命令模块、常见漏洞利用GUI模块、shiro rememberMe解密模块,加快测试效率
fullhunt/spring4shell-scan
A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities
trickster0/TartarusGate
TartarusGate, Bypassing EDRs
netero1010/ScheduleRunner
A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operation
crummie5/FreshyCalls
FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!
XiaoliChan/wmiexec-RegOut
Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-software in lateral movement like WMIHACKER.
pmiaowu/PmWebDirScan
多线程的web目录扫描工具
4nth0ny1130/spring4shell_behinder
CVE-2022-22965写入冰蝎webshell脚本
Awrrays/Pentest-Tips
RedTeam Pentesting 学习资源,工具
wwl012345/AVCheck
对windows系统进程中的杀软进行识别,快速发现杀软,为后续绕过进行准备。
XiaoliChan/WinRpcTest
利用RPC服务,内网批量探测Windows出网
zha0/BloodyAv
BloodyAv is Custom Shell Code loader to Bypass Av and Edr.
cloudwindby/shell
对32位EXE文件的加密壳
Ares-X/Memory-Dump