xnianq

xnianq's Stars

• jumpserver/jumpserver

  An open-source PAM tool alternative to CyberArk. 广受欢迎的开源堡垒机。

  Language:Python25.2k6546.7k5.3k

• drduh/macOS-Security-and-Privacy-Guide

  Guide to securing and improving privacy on macOS

  21.2k6832601.5k

• qjfoidnh/BaiduPCS-Go

  iikira/BaiduPCS-Go原版基础上集成了分享链接/秒传链接转存功能

  Language:Go2.9k27310443

• cseroad/Exp-Tools

  一款集成高危漏洞exp的实用性工具

  993152968

• Accenture/Spartacus

  Spartacus DLL/COM Hijacking Toolkit

  Language:C#981225131

• knavesec/CredMaster

  Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling

  Language:Python9431333124

• qwqdanchun/Pillager

  Pillager是一个适用于后渗透期间的信息收集工具

  Language:C#91091992

• myzxcg/RealBlindingEDR

  Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

  Language:C++8882012167

• The-Viper-One/PsMapExec

  A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec

  Language:PowerShell8588695

• daem0nc0re/PrivFu

  Kernel mode WinDbg extension and PoCs for token privilege investigation.

  Language:C#778152118

• strivexjun/AheadLib-x86-x64

  hijack dll Source Code Generator. support x86/x64

  Language:C++7182413216

• FourCoreLabs/EDRHunt

  Scan installed EDRs and AVs on Windows

  Language:Go55414281

• hasherezade/transacted_hollowing

  Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging

  Language:C51720474

• pykiller/API-T00L

  互联网厂商API利用工具。

  Language:Java5074452

• kohlersbtuh15/accesskey_tools

  阿里云aliyun/腾讯云tencentcloud/华为云huaweicloud/aws等各种云厂商的accesskey运维安全工具，accesskey利用工具，包括但不限于创建ecs、ecs查询和命令执行、oss查询和批量下载等各种功能,aws accesskey rce;remote command execute

  Language:Python48632042

• netero1010/GhostTask

  A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.

  Language:C4596155

• tothi/dll-hijack-by-proxying

  Exploiting DLL Hijacking by DLL Proxying Super Easily

  Language:C4508186

• irsl/curlshell

  reverse shell using curl

  Language:Python4466070

• ConsciousHacker/WFH

  Language:Python4019169

• jpbetz/auger

  Directly access data objects stored in etcd by kubernetes.

  Language:Go390151162

• 0xlane/wechat-dump-rs

  该工具用于导出正在运行中的微信进程的 key 并自动解密所有微信数据库文件以及导出 key 后数据库文件离线解密。

  Language:Rust35341652

• 7BitsTeam/EDR-Bypass-demo

  Some demos to bypass EDRs or AVs by 78itsT3@m

  Language:C3429359

• joeavanzato/Trawler

  PowerShell script to help Incident Responders discover potential adversary persistence mechanisms.

  Language:PowerShell30521132

• memN0ps/srdi-rs

  Rusty Shellcode Reflective DLL Injection (sRDI) - A 4KB reflective loader for Position-Independent Code (PIC) generation in Rust (Codename: Venom)

  Language:Rust2826036

• MzzdToT/HAC_Bored_Writing

  各种漏洞批量扫描poc、exp，涵盖未授权、RCE、文件上传、sql注入、信息泄露等

  Language:Python2814258

• Binject/binjection

  Injects additional machine instructions into various binary formats.

  Language:Go26711230

• Ridter/TorProxy

  利用Tor搭建Socks5代理，动态切换IP

  Language:Shell2033225

• YDHCUI/rustdesk

  基于rustdesk修改的远程桌面软件，将agent部分分离出来

  Language:Rust19521144

• ewby/Mockingjay_BOF

  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique

  Language:C1481018

• EddieIvan01/rustdesk-hvnc

  HVNC based on RustDesk

  Language:Rust793010