B0y1n4o4's repositories
CTFDatabase
有关CTF的资料
ANGRYPUPPY
Bloodhound Attack Path Automation in CobaltStrike
csfm
Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.
EquationGroupLeaks
TheShadowBrokers方程组的内容的泄漏的4/5 4/5 of the leaks provided by TheShadowBrokers containing content from The Equation Group.
fuzzbunch
NSA finest tool
HostingCLR
Executing a .NET Assembly from C++ in Memory (CLR Hosting)
Invoke-LoginPrompt
Invokes a Windows Security Login Prompt and outputs the clear text password.
MemScan-1.0
Scan and edit memory using WinAPI functions such as ReadProcessMemory and WriteProcessMemory
morphHTA
morphHTA - Morphing Cobalt Strike's evil.HTA
PasswordchangeNotify
when pass change ,send the pass to remote host
processrefund
An attempt at Process Doppelgänging
ReflectivePELoader
Reflective PE loader for DLL injection
RISCYpacker
Process Hollowing Packer
scout-win
Scout backdoor for Windows
Shellcode-Via-HTA
How To Execute Shellcode via HTA
spraywmi
SprayWMI is an easy way to get mass shells on systems that support WMI. Much more effective than PSEXEC as it does not leave remnants on a system.
subTee-gits-backups
subTee gists code backups
vMysqlMonitoring
vMysqlMonitoring
Windows-User-Clone
Create a hidden account
WMIcmd
A command shell wrapper using only WMI for Microsoft Windows
WMIOps
This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
WSUSpendu
Implement WSUSpendu attack
xiaogongju
EW重构计划