abcheroworld Goto Github PK
Type: User
Type: User
This is a multi-use bash script for Linux systems to audit wireless networks.
ARL官方仓库备份项目:ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
ARL官方仓库备份项目+指纹添加工具:ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.
Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
CVE-2024-20931, this is the bypass of the patch of CVE-2023-21839
CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> RCE in JetBrains TeamCity Pre-2023.11.4
Deluder is a tool for intercepting traffic of proxy unaware applications. Currently, Deluder supports OpenSSL, GnuTLS, SChannel, WinSock and Linux Sockets out of the box. ⚡
Keylogging server and client that uses DNS tunneling/exfiltration to transmit keystrokes.
Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
Tools for analyzing EDR agents
Execute ELF files without dropping them on disk
符合个人渗透开发习惯的fscan
Dynamically convert a native EXE to PIC shellcode by appending a shellcode stub
evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
A slightly more fun way to disable windows defender. (through the WSC api)
Pcap_DNSProxy, a local DNS server based on packet capturing
聚合Github上已有的Poc或者Exp,CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.
Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
a tool to help operate in EDRs' blind spots
Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypass infamous rkhunter antirootkit.
ROP-based sleep obfuscation to evade memory scanners
A round-trip obfuscated HTTP file transfer setup built to bypass IDS detections.
smbclient-ng, a fast and user friendly way to interact with SMB shares.
WebRTC P2P online web media streaming tool (for files, video, screen, live streaming, text) with management and statistical monitoring capabilities.
Interactive terminal based tool to configure a Raspberry Pi into a transparent Wifi based proxy with traffic tunnelling support
WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
Go编写的多人运动渗透测试图形化框架、支持lua插件扩展、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.