Credentials recovery project

用CSharp写的一款信息搜集工具，目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密

该资源为系统安全和逆向分析实验，包括作者从零学习恶意代码分析、病毒逆向分析的工具及样本，基础性文章，希望对您有所帮助~

InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditiona…

Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

Semi-automatic OSINT framework and package manager

Interesting APT Report Collection And Some Special IOC

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Windows Elevation(持续更新)

CVE-2020-0796 (SMBGhost) LPE

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

Cobalt Strike插件 - RDP日志取证&清除

Neo-reGeorg is a project that seeks to aggressively refactor reGeorg

Defeating Windows User Account Control

Python Remote Administration Tool (RAT) to gain meterpreter session

免杀webshell无限生成工具

Pre-Built Vulnerable Environments Based on Docker-Compose

Xiaomi Mobile Phone Kernel OpenSource

You Know, For WEB Fuzzing ! 日站用的字典。

Six Degrees of Domain Admin

Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive …

A little tool to play with Windows security

目标tcp端口快速扫描、banner识别、cdn检测

Git All the Payloads! A collection of web attack payloads.

Cobalt strike 修改支持回显中文。

GhostTunnel is a covert backdoor transmission method that can be used in an isolated environment.

djano markdown-editor