Name: backlion
Type: User
Company: 渗透测试研究中心公众号【渗透测试研究中心】
Bio: Penetration Testing,WEB Security Research,Red Team, penetration testing and Research Center --->>http://www.cnblogs.com/backlion
Location: **成都
Blog: http://www.cnblogs.com/backlion
backlion's Projects
个人部分知识总结
The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification
A fully functional DanderSpritz lab in 2 commands
Building an Active Directory domain and hacking it
DarthSidious 中文版
资料分享
数据库基线检查工具
DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any machine, powershell modules, and Dropbox servers as a means of communication.
大宝剑-边界资产梳理工具(红队、蓝队、企业组织架构、子域名、Web资产梳理、Web指纹识别、ICON_Hash资产匹配)
自动扫描内网常见sql、no-sql数据库脚本(mysql、mssql、oracle、postgresql、redis、mongodb、memcached、elasticsearch),包含未授权访问及常规弱口令检测
A cobaltstrike script that integrates DDEAuto Attacks
All things to do after installing Kali Linux and Add more awesome hacking tools to your Kali Linux system
织梦全版本漏洞扫描
Get reverse connection using simple metaploit reverse_tcp payload, microsoft word and SettingContent-ms file
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️🔥
DSO-Lab 漏洞研究成果整理
DeimosC2 is a Golang command and control framework for post-exploitation.
测试文件
Dendroid HTTP RAT Original
(extensible) Data Exfiltration Toolkit (DET)
Vagrant & Packer scripts to build a lab environment complete with security tooling and logging best practices
字典仓库:口令、子域名、旁站、Web接口、Web参数
渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目
An advanced web directory scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录扫描工具,功能将会强于DirBuster、Dirsearch、cansina、御剑。
Ubuntu Linux privilege escalation exploit (CVE-2019-7304)
a fast domain brute tool