bigbrobro's repositories
APT-Hunter
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
Beta
Beta versions of my software
bloodyAD
BloodyAD is an Active Directory Privilege Escalation Framework
Cobalt-Clip
Cobaltstrike addons to interact with clipboard
EfsPotato
Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
fileless-xec
Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, invisible tracks, cross-platform,...)
gatekeeper
Gatekeeper - Policy Controller for Kubernetes
gitoops
all paths lead to clouds
gofun
一些内网渗透中可能用到的东拼西凑做出来的小工具
GPUSleep
Move CS beacon to GPU memory when sleeping
JNDI-Injection-Exploit
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
Lazarus-research
Lazarus analysis tools and research report
Log4j2-CVE-2021-44228
Remote Code Injection In Log4j
log4jshell-pdf
The purpose of this project is to demonstrate the Log4Shell exploit with Log4J vulnerabilities using PDF as delivery channel
lsassy
Extract credentials from lsass remotely
memit
Run binaries straight from memory in Linux :no_entry_sign::floppy_disk:
Metsubushi
Generate droppers with encrypted payloads automatically.
natpass
新一代NAT内网穿透+shell+vnc工具
NtTools
Some random system tools for Windows
OffensiveAutoIt
Offensive tooling notes and experiments in AutoIt v3 (https://www.autoitscript.com/site/autoit/)
Pachine
Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)
SQLRecon
A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
Sunflower_get_Password
一款针对向日葵的识别码和验证码提取工具
TFirewall
防火墙出网探测工具,内网穿透型socks5代理
vscan
开源、轻量、快速、跨平台 的红队(redteam)外网打点扫描器,功能 端口扫描(port scan) 指纹识别(fingerprint) nday检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)
