Pinned Repositories
AFL
american fuzzy lop - a security-oriented fuzzer
aioScan_CVE-2020-0796
基于asyncio(协程)的CVE-2020-0796 速度还是十分可观的,方便运维师傅们对内网做下快速检测。
android-malware
Collection of android malware samples
APT_REPORT
Interesting apt report collection and some special ioc express
APTMalware
APT Malware Dataset Containing over 3,500 State-Sponsored Malware Samples
CobaltBus
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
joy
A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.
scripts
Shadowsocks/SS一键脚本、ShadowsocksR/SSR一键脚本、V2Ray一键脚本、trojan一键脚本、VPS购买教程,以及各种资源教程
thc-ipv6
IPv6 attack toolkit
theZoo
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
sanlwg's Repositories
sanlwg/CobaltBus
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
sanlwg/theZoo
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
sanlwg/APT_REPORT
Interesting apt report collection and some special ioc express
sanlwg/arya
Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.
sanlwg/Asn1DerParser.NET
Abstract Syntax Notation One (ASN.1) binary parser to support Distinguished Encoding Rules (DER) in .NET
sanlwg/Asn1Editor.WPF
Graphical .NET-based WPF Abstract Syntax Notation One (ASN.1) editor
sanlwg/BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
sanlwg/client
Keybase Go Library, Client, Service, OS X, iOS, Android, Electron
sanlwg/Cobalt4.4
WIPE YOUR ASS WITH THE REAL COBALT STRIKE
sanlwg/cryptolens-python
Cryptolens Client API for Python
sanlwg/hashcat
World's fastest and most advanced password recovery utility
sanlwg/ja3
JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
sanlwg/ja3box
extract ja3(s) when sniffing or from a pcap.
sanlwg/Kernelhub
:palm_tree:Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (Windows提权漏洞合集)
sanlwg/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
sanlwg/Noriben
Noriben - Portable, Simple, Malware Analysis Sandbox
sanlwg/php-malware-finder
Detect potentially malicious PHP files
sanlwg/poc--exp
常用渗透poc收集
sanlwg/POChouse
POC&EXP仓库、hvv弹药库、Nday、1day
sanlwg/PocOrExp_in_Github
聚合Github上已有的Poc或者Exp,CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.
sanlwg/sandboxie
The Sandboxie application
sanlwg/shadowsocksr
Python port of ShadowsocksR
sanlwg/shadowsocksr-libev
sanlwg/Some-PoC-oR-ExP
各种漏洞poc、Exp的收集或编写
sanlwg/SSLVerifier.WPF
sanlwg/Veil
Veil 3.1.X (Check version info in Veil at runtime)
sanlwg/Windows_Kernel_Resources
Windows Kernel Resources.
sanlwg/WindowsPrivilegeEscalation
Collection of Windows Privilege Escalation (Analyse/PoC/Exp...)
sanlwg/yakit
Cyber Security ALL-IN-ONE Platform
sanlwg/yara
The pattern matching swiss knife