Pinned Repositories
ADCollector
A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.
AlternativeShellcodeExec
Alternative Shellcode Execution Via Callbacks
Ares-RedTeam_Box
Ares RedTeam_Box 是一款面相非初级网络渗透者,可高度自定义化的工具。
cDogScan
多服务口令爆破、内网常见服务未授权访问探测,端口扫描
ChineseCommandExec
go语言执行命令中文乱码解决
crossCompile
go 交叉编译工具
GoLib
GoLib 适用于扫描器的go库
hihttps
hihttps是一款完整源码的高性能web应用防火墙,既支持传统WAF的所有功能如SQL注入、XSS、恶意漏洞扫描、密码暴力破解、CC、DDOS等ModSecurity正则规则,又支持无监督机器学习,自主对抗未知攻击。
JSP-Webshells
Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
sqli-labs-master
sql注入必练习题目
workcha's Repositories
workcha/cDogScan
多服务口令爆破、内网常见服务未授权访问探测,端口扫描
workcha/JSP-Webshells
Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
workcha/ADCollector
A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.
workcha/BeaconEye
Hunts out CobaltStrike beacons and logs operator command output
workcha/CobaltSpam
Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons
workcha/codeql-uboot
workcha/CopyCat
Simple rapper for Mimikatz, bypass Defender
workcha/domains
World’s single largest Internet domains dataset
workcha/Ehoney
安全、快捷、高交互、企业级的蜜罐管理系统,支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports multiple protocol honeypots, honeytokens, baits and other functions.
workcha/FireDog
开源跨平台轻量级病毒特征检测引擎。Open source cross-platform lightweight virus signature detection engine.
workcha/fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
workcha/goDomain
Windows活动目录中的LDAP信息收集工具
workcha/gonmap
gonmap是一个go语言的nmap端口扫描库,使用nmap开源的端口扫描策略,在效率和速度上取得一个折中的中间值,便于做大网络环境的资产测绘。
workcha/goWMIExec
Really stupid re-implementation of invoke-wmiexec
workcha/Hello-Java-Sec
☕️ Java Security,安全编码和代码审计
workcha/Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
workcha/java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
workcha/Kernelhub
:palm_tree:Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (Windows提权漏洞合集)
workcha/Khepri
🔥🔥🔥Free,Open-Source,Cross-platform agent and Post-exploiton tool written in Golang and C++.
workcha/Kunlun-M
Kunlun-Mirror 专注于安全研究员使用的审计辅助工具
workcha/link
link is a command and control framework written in rust
workcha/PE-Packer
📦 A Windows x86 PE file packer written in C & Intel x86 Assembly. The file after packing can obstruct the process of reverse engineering.
workcha/Rubeus
Trying to tame the three-headed dog.
workcha/SharpBeacon
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
workcha/sharpwmi
sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。
workcha/ShuiYing_0x727
检测域环境内,域机器的本地管理组成员是否存在弱口令和通用口令,对域用户的权限分配以及域内委派查询
workcha/SourcePoint
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
workcha/subjack
Subdomain Takeover tool written in Go
workcha/SysWhispers2
AV/EDR evasion via direct system calls.
workcha/UACME
Defeating Windows User Account Control