UnknowSec's repositories
GoBypassAV
整理了基于Go的16种API免杀测试、8种加密测试、反沙盒测试、编译混淆、加壳、资源修改等免杀技术,并搜集汇总了一些资料和工具。
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
2022-HW-POC
2022 护网行动 POC 整理
AboutSecurity
用于渗透测试的 payload 和 bypass 字典.
AbuseAzureAPIPermissions
Abuse Azure API permissions for red teaming
AD-Pentest-Notes
用于记录内网渗透(域渗透)学习 :-)
awesome_shell_loaders
shellcode-loaders集合列表
darkPulse
darkPulse是一个用go编写的shellcode Packer,用于生成各种各样的shellcode loader,
DCSec
域控安全one for all
Doge-Gabh
GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisper/RefleXXion golang implementation
geacon_pro
跨平台重构了Cobaltstrike Beacon,适配了大部分Beacon的功能,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.
HackBrowserData
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
cobaltstrike4.5_cdf
cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证等
giu
Cross platform rapid GUI framework for golang based on Dear ImGui.
GolangCallbackLoader
golang实现的回调函数加载器库
JavaSec
JAVA安全
My-Shodan-Scripts
Collection of Scripts for shodan searching stuff.
OffensiveNim
My experiments in weaponizing Nim (https://nim-lang.org/)
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application
PentestDB
各种数据库的利用姿势
POCS
POCS
RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
Remote_ShellcodeLoader
远程shellcode加载&权限维持+小功能
SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list
StopDefender
Stop Windows Defender programmatically
XG_NTAI
用于Webshell木马免杀、流量加密传输