AntBean's repositories
Awesome-CobaltStrike
cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources
Awesome-CobaltStrike-Defence
Defences against Cobalt Strike
chainbreaker
Mac OS X Keychain Forensic Tool
client-side-prototype-pollution
Prototype Pollution and useful Script Gadgets
commonspeak2
Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
espoofer
An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
frp
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
GitMonitor
One way to continuously monitor sensitive information that could be exposed on Github
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
JNDI-Injection-Bypass
Some payloads of JNDI Injection in JDK 1.8.0_191+
Ladon
大型内网渗透扫描器&Cobalt Strike,Ladon8.9内置120个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
mac_apt
macOS (& ios) Artifact Parsing Tool
machinelearning
Machine learning and artificial intelligence
MySQL_Fake_Server
MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
osquery-attck
Mapping the MITRE ATT&CK Matrix with Osquery
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
python-sec
A simple python library that allows for easy access of the SEC website so that someone can parse filings, collect data, and query documents.
shhgit
Ah shhgit! Find GitHub secrets in real time
Web-CTF-Cheatsheet
Web CTF CheatSheet 🐈