JohnNash99's repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
ADCollector
A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.
ADSearch
A tool to help query AD via the LDAP protocol
AsyncRAT-C-Sharp
Open-Source Remote Administration Tool For Windows C# (RAT)
badlnk
Reverse Shell in Shortcut File (.lnk)
BloodHound
Six Degrees of Domain Admin
CVE-2020-0796
CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost
CVE-2020-0796-POC
CVE-2020-0796 Pre-Auth POC
CVE-2021-24086
Proof of concept for CVE-2021-24086, a NULL dereference in tcpip.sys triggered remotely.
domainhunter
Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names
FileMonitor
文件变化实时监控工具(代码审计/黑盒/白盒审计辅助工具)
fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
Ghost-In-The-Logs
Evade sysmon and windows event logging
Godzilla
Godzilla source code
GoGhost
High Performance, lightweight, portable Open Source tool for mass SMBGhost Scan
HackBar
Firefox and Google Chrome Extension of HackBar without license
hackingtool
ALL IN ONE Hacking Tool For Hackers
Hikari
LLVM Obfuscator
K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
ldapdomaindump
Active Directory information dumper via LDAP
Mars
Mars(战神)——资产发现、子域名枚举、C段扫描、资产变更监测、端口变更监测、域名解析变更监测、Awvs扫描、POC检测、web指纹探测、端口指纹探测、CDN探测、操作系统指纹探测、泛解析探测、WAF探测、敏感信息检测等等
MatryoshkaDollTool
MatryoshkaDollTool-程序加壳/捆绑工具
Ninja
Open source C2 server created for stealth red team operations
RGPerson
RGPerson - 随机身份生成脚本
Stowaway
👻Stowaway -- Multi-hop Proxy Tool for pentesters
vault
A tool for secrets management, encryption as a service, and privileged access management
vcpkg
C++ Library Manager for Windows, Linux, and MacOS
win32k-bugs
Dump of win32k POCs for bugs I've found
WinPwnage
UAC bypass, Elevate, Persistence methods
xssmap
XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具