M3g4Byt3's repositories
Alaris
A protective and Low Level Shellcode Loader that defeats modern EDR systems.
Bankai
Another Go Shellcode Loader using Windows APIs
BurpSuite_403Bypasser
Burpsuite Extension to bypass 403 restricted directory
bypass-403
A simple script just made for self use for bypassing 403
Cobalt-Strike-1
参考师傅们写的CS的脚本
CobaltStrikeReflectiveLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
CVE-2021-33766
ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit
ExpDemo-JavaFX
图形化漏洞利用Demo-JavaFX版
EyeJo
EyeJo是一款自动化资产风险评估平台,可以协助甲方安全人员或乙方安全人员对授权的资产中进行排查,快速发现存在的薄弱点和攻击面。
filebrowser
📂 Web File Browser
fluxion-1
Fluxion is a remake of linset by vk496 with enhanced functionality.
GGSCAN
一款渗透时快速资产探测工具
go-shellcode
A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques.
Godzilla
哥斯拉
Gr33k
图形化漏洞利用集成工具
ImpulsiveDLLHijack
C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.
Java-Deserialization-Scanner
All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
JNDIExploit-1
一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。
mm-wiki
MM-Wiki 一个轻量级的企业知识分享与团队协同软件,可用于快速构建企业 Wiki 和团队知识分享平台。部署方便,使用简单,帮助团队构建一个信息共享、文档管理的协作环境。
Ninja_UUID_Runner
Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!
PEzor
Open-Source Shellcode & PE Packer
SchTask_0x727
创建隐藏计划任务,权限维持,Bypass AV
SharpADUserIP
提取DC日志,快速获取域用户对应IP地址
Shellcode-Injection-Techniques
A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this project up as I learn, discover or develop more techniques. Some techniques are better than others at bypassing AV.
spp
简单强大的多协议双向代理工具 A simple and powerful proxy
USBCopyer
😉 用于在插上U盘后自动按需复制该U盘的文件。”备份&偷U盘文件的神器”(写作USBCopyer,读作USBCopier)
WebCrack
WebCrack是一款web后台弱口令/万能密码批量检测工具,在工具中导入后台地址即可进行自动化检测。
xlsxPoison
Just a PoC to turn xlsx (regular Excel files) into xlsm (Excel file with macro) and slipping inside a macro (vbaProject.bin)