Giter VIP home page Giter VIP logo

slacker's Introduction

Slacker

懒鬼插件

懒懒懒懒懒,我凭本事打下来的SESSION,为什么还要自己动手去后渗透?

从各种地方搜集来的奇怪的插件

自己审计了一番,确保没有后门,源码都放在dev目录下

不保证免杀,敏感操作请事先在本地测试

用,都tmd给我用,这样被溯源的时候就不会只关联我一个人了.jpg

功能

  • 扫描分析
    • 杀毒检测-进程比对
    • 杀毒检测-WMIC
    • 检测管理员进程
    • 检测硬件信息
    • 检测Domain信息
    • 查询安装的软件
    • 查询管理员RDP登录来源
    • 查询.net兼容版本
    • 读取wifi密码
  • 权限维持
    • 服务马
    • winrm后门
    • msdtc劫持
    • 令牌提权
    • 令牌降权
  • 小工具
    • 关闭防火墙
    • 弹窗
    • 开启RDP
    • API添加用户
    • Defender 加白名单
    • 驱动K进程
    • 自删除
    • 删除RDP登录日志
    • 删除系统日志
    • 文件扩大,防止上传
    • HVNC
  • 提权
    • SweetPotato
    • UAC
    • MS16-032
    • 其他一大堆土豆
    • ZeroLogon
    • PowerView
    • sAMSpoofing
    • noPAC
  • Dump操作
    • Reg导出
    • comsvcsdll
    • minidump
    • dcsyncdump
    • 浏览器密码
    • 驱动dump内存

todo

  • 微信密钥抓取(改为dump进程,真的要用的时候再去逆向吧)
  • ms17010
  • 代理
  • HVNC
  • 读取RDP密码
  • SharpDump
  • mobaxteam 密码读取
  • xshell 密码读取
  • 浏览器密码读取
  • 模拟程序假死
  • 读取sqlserver保存密码

大量抄袭来源

https://github.com/422926799/csplugin

https://github.com/DeEpinGh0st/Erebus

还有各种稀奇古怪的,总之就是没有多少自己写的

slacker's People

Contributors

9bie avatar

Stargazers

onewin avatar avatar avatar avatar avatar Abbbbb avatar vvan9 avatar h0ld1rs avatar 孤桜懶契 avatar Hne avatar avatar avatar UnT7 avatar CSeroad avatar avatar avatar Junyc avatar avatar avatar Ro1i avatar avatar Loid avatar avatar xzxx0z avatar 久绊A avatar avatar 9h9he avatar avatar avatar avatar avatar laaaaaaaaaaaaaaaaaaau9h avatar xmqaq avatar avatar py_001 avatar avatar avatar 阿呆攻防 avatar Guoguo avatar avatar avatar sp7der avatar avatar hextuff avatar leticia avatar avatar avatar ZFYy1 avatar avatar GGbond avatar Wh9527 avatar Heidenreich avatar s0k avatar skr avatar avatar Akun avatar chamignon avatar avatar avatar WinkAir avatar iak3ec avatar W4ter avatar avatar lmy0 avatar avatar Lay0us avatar avatar avatar GKDshell avatar avatar AD钙奶 avatar XiaoYi avatar avatar avatar yanci avatar ma4 avatar Lhaihai avatar Shym avatar avatar avatar hywell avatar avatar avatar avatar Classic avatar WebCode avatar ibranch7 avatar 浮萍 avatar avatar 张三 avatar 咕咕咕 avatar hatnoop avatar shley avatar SYSCALL INT 0x80 avatar EvilChen avatar 金枪银矛小霸王 avatar avatar hash avatar Gue5t avatar avatar

Watchers

avatar avatar avatar SYSCALL INT 0x80 avatar hirak0 avatar lu2ker avatar avatar

Forkers

lasovoc lonelylose redwifiteam ghost2097221 lay0us bingpo wyzmgmdg kzh313561014 classic130 opensesamedoors junyc18 unt7 gylq 30579096 amazingsec de3ay

slacker's Issues

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.