bigbrobro's repositories
sudo_inject
[Linux] Two Privilege Escalation techniques abusing sudo token
Cobalt_Strike_wiki
Cobalt Strike系列
CrackMapExec
A swiss army knife for pentesting networks
run-embedded-elf-from-memory
Experiment with Linux system calls (memfd_create, fexecve, fork...)
merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
commando-vm
Complete Mandiant Offensive VM (Commando VM), the first full Windows-based penetration testing virtual machine distribution. The security community recognizes Kali Linux as the go-to penetration testing platform for those that prefer Linux. Commando VM is for penetration testers that prefer Windows. We know that building a Windows penetration testing environment can be tedious - we aim to streamline and simplify this process. Commando VM includes over 140 tools.
FuzzScanner
一个主要用于信息搜集的工具集,主要是用于对网站子域名、开放端口、端口指纹、c段地址、敏感目录等信息进行批量搜集。
CSharpSetThreadContext
C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread
cyphon
Open source incident management and response platform.
GoMet
Multi-platform agent written in Golang. TCP forwarding, socks5, tunneling, pivoting, shell, download, exec
ingestion
A log enrichment stream processor built in golang for suricata.
hershell
Multiplatform reverse shell generator
BERT-AttributeExtraction
USING BERT FOR Attribute Extraction in KnowledgeGraph. fine-tuning and feature extraction. 使用基于bert的微调和特征提取方法来进行知识图谱百度百科人物词条属性抽取。
metta
An information security preparedness tool to do adversarial simulation.
dnstunnel
dns tunnel backdoor DNS隧道后门
AutoRDPwn
The Shadow Attack Framework
HideShell
A JSP backdoor that enables under Tomcat hiding arbitrary JSP files, in addition to their access logs.
malware-samples
A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
yara
The pattern matching swiss knife
Excel4-DCOM
PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
TikiTorch
Process Hollowing
CME-PowerShell-Scripts
A collection of modifed PowerShell Scripts for CrackMapExec (https://github.com/byt3bl33d3r/CrackMapExec)
imgurl
ImgURL是一个简单、纯粹的图床程序,让个人图床多一个选择。
LuWu
红队基础设施自动化部署工具
Red-Team-Infrastructure-Wiki
Wiki to collect Red Team infrastructure hardening resources
Perun
Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架
Micro8
Gitbook
Tokenvator
A tool to elevate privilege with Windows Tokens
BloodHound-Tools
Miscellaneous tools for BloodHound