SecuPlus's repositories
alicloud-tools
China Aliyun ECS Tools
cobalt-arsenal
My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
Cooolis-ms
Cooolis-ms是一个包含了Metasploit Payload Loader、Cobalt Strike External C2 Loader、Reflective DLL injection的代码执行工具,它的定位在于能够在静态查杀上规避一些我们将要执行且含有特征的代码,帮助红队人员更方便快捷的从Web容器环境切换到C2环境进一步进行工作。
fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
ginger
A security assessment tool for Hitachi Vantara's Pentaho Business Analytics platform.
go-shellcode
A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques.
Godzilla
哥斯拉
GoScan
GoScan是采用Golang语言编写的一款分布式综合资产管理系统,适合红队、SRC等使用
GoYiyi
提供一个Golang 的bypass AV 思路。
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
JNDI-Exploit-Kit
JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps vulnerable to JNDI Injection)
JuicyPotato
Modifying JuicyPotato to support load shellcode and webshell
Ladon
大型内网渗透扫描器&Cobalt Strike,Ladon9.1.4内置150个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
noPac
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
proxypool
自动抓取tg频道、订阅地址、公开互联网上的ss、ssr、vmess、trojan节点信息,聚合去重后提供节点列表。欢迎star
pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python
pwn_jenkins
Notes about attacking Jenkins servers
rdpwrap
RDP Wrapper Library
rvn0xsy.github.io
My Blog
SecuPlus
Config files for my GitHub profile.
SharpXDecrypt
Xshell全版本密码恢复工具
shiro_attack
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)
SysWhispers2
AV/EDR evasion via direct system calls.
TikiTorch
Process Injection
tomcatmanager
A command line tool and python library for managing a tomcat server
typoraCracker
A extract & decryption and pack & encryption tools for typora.
x-Crack
xray-Crack