Mamor5409's repositories
no-defender
A slightly more fun way to disable windows defender + firewall. (through the WSC api)
ARL
ARL官方仓库备份项目:ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Z-Godzilla_ekp
哥斯拉webshell管理工具二次开发规避流量检测设备
Beacon_Source
not a reverse-engineered version of the Cobalt Strike Beacon
atexec-pro
Fileless atexec, no more need for port 445
CS-AutoPostChain
基于 OPSEC 的 CobaltStrike 后渗透自动化链
BypassLoad
通过远程加载AES + XOR异或加密的shellcode免杀加载器,过主流杀软,无过多技术细节。
MutationGate
Use hardware breakpoint to dynamically change SSN in run-time
XiebroC2
Go编写的多人运动渗透测试图形化框架、支持lua插件扩展、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
MultiDump
MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
S-inject
支持x86/x64的DLL和Shellcode 的Windows注入的免杀工具
CrimsonEDR
Simulate the behavior of AV/EDR for malware development training.
AVEvasionCraftOnline
AV Evasion Craft Online 在线免杀平台
MDPOCS
猫蛋儿安全团队编写的poc能报就能打。企业微信、海康、Metabase、Openfire、泛微OA......
POC
2023HW漏洞整理,收集整理漏洞EXp/POC,大部分漏洞来源网络,目前收集整理了100多个poc/exp
AsyncRAT-C-Sharp
Open-Source Remote Administration Tool For Windows C# (RAT)
geacon_plus
CobaltStrike beacon written in golang
Awesome-POC
一个漏洞POC知识库
AceLdr
Cobalt Strike UDRL for memory scanner evasion.
Supershell
Supershell C2 远控平台,基于反向SSH隧道获取完全交互式Shell
DarkWidow
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing (Emotet method) + Api resolving from TIB + API hashing
nanodump
The swiss army knife of LSASS dumping
noterce
一种另辟蹊径的免杀执行系统命令的木马
SysWhispers3WinHttp
SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能并使用32位GCC进行编译,文件大小14KB,可免杀绕过360核晶防护与Defender
LsaParser
A shitty (and old) lsass parser.
Pentest_Note
渗透测试常规操作记录
Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
awesome-resume-for-chinese
:page_facing_up: 适合中文的简历模板收集(LaTeX,HTML/JS and so on)由 @hoochanlon 维护