N0one's repositories
Nacos_Rce
网传nacos_rce漏洞poc
IEyes
icp备案查询
Ceyes
一款基于fofa根据域名或fofa语法收集C段分布数量的工具
Stowaway
👻Stowaway -- Multi-hop Proxy Tool for pentesters
rakshasa
基于go编写的跨平台、稳定、隐秘的多级代理内网穿透工具
suo5
一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool
chatgpt-api
Node.js client for the official ChatGPT API. 🔥
nuclei-plus
Functional enhancement based on nuclei
SpringBoot-Scan
针对SpringBoot的开源渗透框架,以及Spring相关高危漏洞利用工具
BypassCredGuard
Credential Guard Bypass Via Patching Wdigest Memory
crawlergo
A powerful browser crawler for web vulnerability scanners
vuldirscan
一个介于目录扫描与poc验证之间的新生儿
Fiora
Fiora:漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行,也可作为burp插件使用。
MYExploit
OAExploit一款基于产品的一键扫描工具。
oFx
漏洞批量验证框架
403-fuzz
针对 403 页面的 fuzz 脚本
terminal
The new Windows Terminal and the original Windows console host, all in the same place!
crawlergo_x_XRAY
360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
SysWhispers2
AV/EDR evasion via direct system calls.
vulbase
各大漏洞文库合集
ScareCrow-CobaltStrike
Cobalt Strike script for ScareCrow payloads (EDR/AV evasion)
GUI_Tools
一个由各种图形化渗透工具组成的工具集
azureOutlookC2
Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for North Korean APT InkySquid / ScarCruft / APT37. TTP: Use Microsoft Graph API for C2 Operations.
EVA3
using hellsgate in EVA to get the syscalls
CandyPotato
Pure C++, weaponized, fully automated implementation of RottenPotatoNG
CobaltStrikeReflectiveLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
SigThief
Stealing Signatures and Making One Invalid Signature at a Time
Cooolis-ms
Cooolis-ms是一个包含了Metasploit Payload Loader、Cobalt Strike External C2 Loader、Reflective DLL injection的代码执行工具,它的定位在于能够在静态查杀上规避一些我们将要执行且含有特征的代码,帮助红队人员更方便快捷的从Web容器环境切换到C2环境进一步进行工作。