b1gw00d's repositories
hooker
🔥🔥hooker是一个基于frida实现的逆向工具包。为逆向开发人员提供统一化的脚本包管理方式、通杀脚本、自动化生成hook脚本、内存漫游探测activity和service、firda版JustTrustMe、disable ssl pinning
javaweb_security_study_notes
java安全的学习笔记
gitlabber
Gitlabber - clones or pulls entire groups tree from gitlab
Phishious
An open-source Secure Email Gateway (SEG) evaluation toolkit designed for red-teamers.
DPAT
Domain Password Audit Tool for Pentesters
Web-Fuzzing-Box
Web Fuzzing Box - Web 模糊测试字典与一些Payloads,主要包含:弱口令暴力破解、目录以及文件枚举、Web漏洞...字典运用于实战案例:https://gh0st.cn/archives/2019-11-11/1
EVTX-to-MITRE-Attack
Set of EVTX samples (>170) mapped to MITRE Att@k tactic and techniques to measure your SIEM coverage or developed new use cases.
CobaltStrike4.4
WIPE YOUR ASS WITH THE REAL COBALT STRIKE
HackPHP
《深入理解PHP代码审计》
linglong
一款甲方资产巡航扫描系统。系统定位是发现资产,进行端口爆破。帮助企业更快发现弱口令问题。主要功能包括: 资产探测、端口爆破、定时任务、管理后台识别、报表展示
henggeFish
自动化批量发送钓鱼邮件(横戈安全团队出品)
phishing_kits
Exposing phishing kits seen from phishunt.io
WinPwn
Automation for internal Windows Penetrationtest / AD-Security
bypass-403
A simple script just made for self use for bypassing 403
feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
CVE-2021-26084
批量检测
SweetPotato
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
rundll32-dll-loader
rundll32 dll加载器
Neo-reGeorg
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
avatarify-python
Avatars for Zoom, Skype and other video-conferencing apps.
urlcrazy
Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.
Awesome-CobaltStrike
cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources
Awesome-Cellular-Hacking
Awesome-Cellular-Hacking
Back2TheFuture
Find patterns of vulnerabilities on Windows in order to find 0-day and write exploits of 1-days. We use Microsoft security updates in order to find the patterns.
Awesome-CobaltStrike-Defence
Defences against Cobalt Strike
swagger-hack
自动化爬取并自动测试所有swagger接口
JadedWraith
Light-weight UNIX backdoor
vulnerable-AD
Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab