Hello-xBugs's repositories
byob
BYOB (Build Your Own Botnet)
SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
BrowserGhost
这是一个抓取浏览器密码的工具,后续会添加更多功能
jvm-dump-proxy
A proxy DLL for Windows to dump JVM classes at JNI level
Sn1per
Automated pentest framework for offensive security experts
CVE-2020-0796-RCE-POC
CVE-2020-0796 Remote Code Execution POC
Impost3r
👻Impost3r -- A linux password thief
idacode
An integration for IDA and VS Code which connects both to easily execute and debug IDAPython scripts.
evilpdf
Embedding executable files in PDF Documents
SharpHellsGate
C# Implementation of the Hell's Gate VX Technique
shad0w
A post exploitation framework designed to operate covertly on heavily monitored enviroments
HellsGate
Original C Implementation of the Hell's Gate VX Technique
CVE-2020-1066-EXP
CVE-2020-1066-EXP支持Windows 7和Windows Server 2008 R2操作系统
WindowsExploitationResources
Some random resources I have enjoyed for certain topics of Windows exploit development and semi-related topics
graftcp
A flexible tool for redirecting a given program's TCP traffic to SOCKS5 or HTTP proxy.
SyscallDumper
Dump system call codes, names, and offsets given a local ntdll.dll file
proxychains
proxychains - a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" for SOCKS4/5, "basic" for HTTP.
invoker
Penetration testing utility.
protolesshooks
API monitoring via return-hijacking thunks; works without information about target function prototypes.
GhostLoader
GhostLoader - AppDomainManager - Injection - 攻壳机动队
fsociety
fsociety Hacking Tools Pack – A Penetration Testing Framework
exploit
Exploits and advisories
tomcat-cluster-session-sync-exp
tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484是session持久化的洞,这个是session集群同步的洞!
win-brute-logon
Crack any Microsoft Windows users password without any privilege (Guest account included)
hellscape
GIMPLE obfuscator for C, C++, Go, ... all supported GCC targets and front-ends that use GIMPLE.
Macrome
Excel Macro Document Reader/Writer for Red Teamers & Analysts
EvilClippy
A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.
SweetPotato
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019