Dr-dot-droid's starred repositories

javascript-obfuscator

A powerful obfuscator for JavaScript and Node.js

Language:TypeScriptLicense:BSD-2-ClauseStargazers:13289Issues:190Issues:822

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Language:PythonLicense:NOASSERTIONStargazers:8573Issues:224Issues:83

CrackMapExec

A swiss army knife for pentesting networks

Language:PythonLicense:BSD-2-ClauseStargazers:8277Issues:307Issues:561

pspy

Monitor linux processes without root permissions

Language:GoLicense:GPL-3.0Stargazers:4782Issues:51Issues:12
Language:PHPLicense:BSD-3-ClauseStargazers:3344Issues:137Issues:146

PSBits

Simple (relatively) things allowing you to dig a bit deeper than usual.

Language:CLicense:UnlicenseStargazers:3122Issues:120Issues:8

ysoserial.net

Deserialization payload generator for a variety of .NET formatters

Language:C#License:MITStargazers:3117Issues:75Issues:62

WeChatOpenDevTools-Python

WeChatOpenDevTool 微信小程序强制开启开发者工具

turbo-intruder

Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.

Language:KotlinLicense:Apache-2.0Stargazers:1442Issues:35Issues:126

noPac

CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.

nuclei-burp-plugin

Nuclei plugin for BurpSuite

Language:JavaLicense:MITStargazers:1133Issues:30Issues:37

bloodyAD

BloodyAD is an Active Directory Privilege Escalation Framework

Language:PythonLicense:MITStargazers:1131Issues:13Issues:40

momo-code-sec-inspector-java

IDEA静态代码安全审计及漏洞一键修复插件

Language:JavaLicense:Apache-2.0Stargazers:981Issues:27Issues:13

VcenterKit

Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit

pretender

Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.

Language:GoLicense:MITStargazers:930Issues:13Issues:3

NET-Deserialize

总结了20+.Net反序列化文章,持续更新

npscrack

蓝队利器、溯源反制、NPS 漏洞利用、NPS exp、NPS poc、Burp插件、一键利用

PassTheCert

Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel

Language:C#License:Apache-2.0Stargazers:517Issues:8Issues:15

ImpulsiveDLLHijack

C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.

Proxy-Attackchain

Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)

Language:C#Stargazers:482Issues:12Issues:0

SharpADWS

Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).

Darksteel

域内自动化信息搜集利用工具

Language:GoLicense:NOASSERTIONStargazers:398Issues:6Issues:7

S4UTomato

Escalate Service Account To LocalSystem via Kerberos

Homework-of-C-Language

C/C++ code examples of my blog.

Language:C++License:BSD-3-ClauseStargazers:366Issues:9Issues:9
Language:PowerShellLicense:Apache-2.0Stargazers:299Issues:19Issues:69

PySQLTools

Mssql利用工具

wrapwrap

Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.

CloudSandbox

收集云沙箱上线C2的ip,如微X、奇XX、3X0、virustX等