30579096's repositories
ossec-hids
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
Cortex
Cortex: a Powerful Observable Analysis and Active Response Engine
chunsou
Chunsou(春蒐),Python3编写的多线程Web指纹识别工具,适用于安全测试人员前期的资产识别、风险收敛以及企业互联网资产风险摸查。
linux-pam-backdoor
Linux PAM Backdoor
fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
confluence-hack
CVE-2023-22515
CVE-2023-32031
CVE-2023-32031 MS Exchange PowerShell backend RCE
MTKPI
🧰 Multi Tool Kubernetes Pentest Image
flare-floss
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
rbac-police
Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
HostCollisionGUI
直接导入需要碰撞的IP和域名,工具多线程碰撞速度快,访问状态码200成功时则会高亮。
cliws
Cross platform interactive bind/reverse PTY shell
xxl-jobExploitGUI
xxl-job最新漏洞利用工具
rengine
reNgine is an automated reconnaissance framework for web applications
Pentest-Windows
Windows11 Penetration Suite Toolkit 一个开箱即用的windows渗透测试环境
Arkari
Yet another llvm based obfuscator based on goron.
LinikatzV2
linikatz is a tool to attack AD on UNIX
KeePwn
A python tool to automate KeePass discovery and secret extraction.
zip-slip-vulnerability
Zip Slip Vulnerability (Arbitrary file write through archive extraction)
SharpWeb
一个浏览器数据(密码|历史记录|Cookie|书签|下载记录)的导出工具,支持主流浏览器。
winapi-obfuscator
obfuscate WINAPI/NTAPI calls easily.
TangledWinExec
PoCs and tools for investigation of Windows process execution techniques
Pillager
A tool for browser recovery
Pentest-Docker
基于CasaOS容器云构建的渗透测试平台 - A Home Cloud Container Platform Built For Learning Penetration And Network Security
TsojanScan
An integrated BurpSuite vulnerability detection plug-in.
ADACLScanner
Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory
SharpUserIP
获取服务器或域控登录日志
spug
开源运维平台:面向中小型企业设计的轻量级无Agent的自动化运维平台,整合了主机管理、主机批量执行、主机在线终端、文件在线上传下载、应用发布部署、在线任务计划、配置中心、监控、报警等一系列功能。