Dr-dot-droid

followers

following

stars

Dr-dot-droid's starred repositories

javascript-obfuscator

A powerful obfuscator for JavaScript and Node.js

Language:TypeScriptBSD-2-Clause13289 190 822

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Language:PythonNOASSERTION8573 224 83

CrackMapExec

A swiss army knife for pentesting networks

Language:PythonBSD-2-Clause8277 307 561

pspy

Monitor linux processes without root permissions

Language:GoGPL-3.04782 51 12

dnscat2

Language:PHPBSD-3-Clause3344 137 146

PSBits

Simple (relatively) things allowing you to dig a bit deeper than usual.

Language:CUnlicense3122 120 8

ysoserial.net

Deserialization payload generator for a variety of .NET formatters

Language:C#MIT3117 75 62

WeChatOpenDevTools-Python

WeChatOpenDevTool 微信小程序强制开启开发者工具

Language:Python1528 13 94

turbo-intruder

Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.

Language:KotlinApache-2.01442 35 126

noPac

CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.

Language:C#1315 27 9

nuclei-burp-plugin

Nuclei plugin for BurpSuite

Language:JavaMIT1133 30 37

bloodyAD

BloodyAD is an Active Directory Privilege Escalation Framework

Language:PythonMIT1131 13 40

momo-code-sec-inspector-java

IDEA静态代码安全审计及漏洞一键修复插件

Language:JavaApache-2.0981 27 13

VcenterKit

Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit

Language:Python943 18 7

pretender

Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.

Language:GoMIT930 13 3

NET-Deserialize

总结了20+.Net反序列化文章，持续更新

npscrack

蓝队利器、溯源反制、NPS 漏洞利用、NPS exp、NPS poc、Burp插件、一键利用

Language:Java588 5 4

PassTheCert

Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel

Language:C#Apache-2.0517 8 15

ImpulsiveDLLHijack

C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.

Language:C#484 12 3

Proxy-Attackchain

Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)

Language:C#482 120

SharpADWS

Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).

Language:C#423 6 2

Darksteel

域内自动化信息搜集利用工具

Language:GoNOASSERTION398 6 7

S4UTomato

Escalate Service Account To LocalSystem via Kerberos

Language:C#387 5 3

Homework-of-C-Language

C/C++ code examples of my blog.

Language:C++BSD-3-Clause366 9 9

Carbon

Language:PowerShellApache-2.0299 19 69

PySQLTools

Mssql利用工具

Language:Python260 4 5

wrapwrap

Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.

Language:Python151 3 3

CloudSandbox

收集云沙箱上线C2的ip，如微X、奇XX、3X0、virustX等

MIT109 5 1

impacket-programming-manual

impacket编程手册

chrome-0day

Language:JavaScript64 2 2