b0bac

ApolloScanner

自动化巡航扫描框架（可用于红队打点评估）

GetMail

利用NTLM Hash读取Exchange邮件

SecurityTools

日常积累的安全工具与代码、脚本

PyNoPSExec

修改自SharpNoPSExec的基于python的横移工具 A Lateral Movement Tool Learned From SharpNoPSExec -- Twitter: @juliourena

k8sUnauthorizedAccessScanner

kubernetes未授权访问漏洞扫描（kubernetes unauthorized access vulnerability scanner）

InvitationGenerator

基于Python3.10和Tkinter写的一个用于生成邀请函的图形界面小工具

AssetScan

HackBrowserData

Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。

mimipenguin

A tool to dump the login password from the current linux user

Viper

Viper (炫彩蛇) 开源图形化内网渗透工具

Windows-Exploit-Suggester

This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.

1195777-chrome0day

b0bac

CVE-2020-1472

Test tool for CVE-2020-1472

CVE-2020-1473

PoC for Zerologon - all research credits go to Tom Tervoort of Secura

eaphammer

Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.

exploits

GitHack

A `.git` folder disclosure exploit

impacket

Impacket is a collection of Python classes for working with network protocols.

JavaSec

a rep for documenting my study, may be from 0 to 0.1

Micro8

pentestdb

WEB渗透测试数据库

PPLKiller

Protected Processes Light Killer

redteam_vul

红队作战中比较常遇到的一些重点系统漏洞整理。

routersploit

Exploitation Framework for Embedded Devices

ShuiZe_0x727

信息收集自动化工具

suidcheck

Linux SUID 提权检测脚本，自动分析具有 s 权限的可执行文件并给出相应的提权利用方法

svnExploit

SvnExploit支持SVN源代码泄露全版本Dump源码

thinkphp-3.2.x-rce-poc

thinkphp 3.2.x 命令执行漏洞poc

Windows10Exploits

Microsoft » Windows 10 : Security Vulnerabilities