Pinned Repositories
autopsy
Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera's memory card.
Awesome-CobaltStrike
cobaltstrike的相关资源汇总 / A collection of cobaltstrike resources to make you better!
Cheatsheet-God
Penetration Testing Biggest Reference Bank - OSCP / PTP & PTX Cheatsheet
Empire
Empire is a PowerShell and Python post-exploitation agent.
MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
proxy.py
⚡ Fast • 🪶 Lightweight • 0️⃣ Dependency • 🔌 Pluggable • 😈 TLS interception • 🔒 DNS-over-HTTPS • 🔥 Poor Man's VPN • ⏪ Reverse & ⏩ Forward • 👮🏿 "Proxy Server" framework • 🌐 "Web Server" framework • ➵ ➶ ➷ ➠ "PubSub" framework • 👷 "Work" acceptor & executor framework
PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual.
ptf
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
random_c2_profile
Cobalt Strike random C2 Profile generator
Real-Time-Voice-Cloning
Clone a voice in 5 seconds to generate arbitrary speech in real-time
wisdark's Repositories
wisdark/ChromeKatz
Dump cookies directly from Chrome process memory
wisdark/COMThanasia
A set of programs for analyzing common vulnerabilities in COM
wisdark/Conferences
wisdark/CustomEntryPoint
Select any exported function in a dll as the new dll's entry point.
wisdark/Deep-Live-Cam
real time face swap and one-click video deepfake with only a single image (uncensored)
wisdark/DriverJack
Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths
wisdark/EXE-or-DLL-or-ShellCode
Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...
wisdark/faraday
Open Source Vulnerability Management Platform
wisdark/goffloader
A Go implementation of Cobalt Strike style BOF/COFF loaders.
wisdark/gofuzz
wisdark/Graphpython
Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
wisdark/jar-analyzer
Jar Analyzer - 一个JAR包分析工具,SCA漏洞分析,批量分析JAR包,方法调用关系搜索,字符串搜索,Spring组件分析,CFG程序分析,JVM栈帧分析,进阶表达式搜索,字节码指令级的动态调试分析,反编译JAR包一键导出,一键提取序列化数据恶意代码,一键分析BCEL字节码
wisdark/koppeling-p
Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
wisdark/LazyXss
Automation tool to testing and confirm the xss vulnerability.
wisdark/lostools
wisdark/netdata
Real-time performance monitoring, done right! https://my-netdata.io/
wisdark/PANIX
Customizable Linux Persistence Tool for Security Research and Detection Engineering.
wisdark/poc-runner
Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 可执行文件体积仅 2 MB
wisdark/privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
wisdark/Red-Teaming-TTPs
Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!
wisdark/RpcProxyInvoke
Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
wisdark/sccm-http-looter
Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
wisdark/SeamlessPass
A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
wisdark/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
wisdark/Shwmae
wisdark/sploitcraft
🏴☠️ Hacking Guides, Demos and Proof-of-Concepts 🥷
wisdark/suo5
A high-performance http proxy tunneling tool
wisdark/TrickDump
Dump lsass using only NTAPIS running 3 programs to create 3 JSON and 1 ZIP file... and generate the Minidump later!
wisdark/whisper-diarization
Automatic Speech Recognition with Speaker Diarization based on OpenAI Whisper
wisdark/windows-api-function-cheatsheets
A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization, interprocess communication, Unicode string manipulation, error handling, Winsock networking operations, and registry operations.