flylinfan

0

followers

following

stars

flylinfan's starred repositories

BelaUtils

Tools reimplemented using Bela library

Language:C++Apache-2.03100

Ladon

Ladon大型内网渗透工具，可PowerShell模块化、可CS插件化、可内存加载，无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。Ladon 12.2内置262个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息，高危漏洞检测16个含MS17010、Zimbra、Exchange

Language:PowerShellMIT485700

al-khaser

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Language:C++GPL-2.0586900

ScyllaHide

Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide

Language:C++GPL-3.0344900

WinDbg_Scripts

Useful scripts for WinDbg using the debugger data model

Language:JavaScript38600

SSLproxy

Transparent SSL/TLS proxy for decrypting and diverting network traffic to other programs, such as UTM services, for deep SSL inspection

Language:CBSD-2-Clause38600

sslsplit

Transparent SSL/TLS interception

Language:CBSD-2-Clause175700

PythonWin7

Python 3.9+ installers that support Windows 7 SP1 and Windows Server 2008 R2 SP1

MIT57500

api-ms-win-core-path-HACK

Implementation of api-ms-win-core-path-l1-1-0.dll for Windows 7 based on Wine code

Language:C34500

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Language:PythonMIT3665200

PortBender

TCP Port Redirection Utility

Language:CApache-2.067500

ja3

JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.

Language:PythonBSD-3-Clause275600

Information_Security_Books

信息安全方面的书籍

Shark

Turn off PatchGuard in real time for win7 (7600) ~ later

Language:CMIT98300

EfiGuard

Disable PatchGuard and Driver Signature Enforcement at boot time

Language:C++GPL-3.0180200

UPGDSED

Universal PatchGuard and Driver Signature Enforcement Disable

Language:CMIT82600

HDE64

Hacker Disassembler Engine 64 Copyright (c) 2008-2009, Vyacheslav Patkov. * All rights reserved.

Language:C4400

minhook

The Minimalistic x86/x64 API Hooking Library for Windows

Language:CNOASSERTION436300

zydis

Fast and lightweight x86/x86-64 disassembler and code generation library

Language:CMIT343900

injdrv

proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

Language:CMIT112500

edk2

EDK II

Language:CNOASSERTION463800

VirtualKD-Redux

VirtualKD-Redux - A revival and modernization of VirtualKD

Language:C++LGPL-2.181900

mimikatz

A little tool to play with Windows security

Language:C1940800

sandbox-attacksurface-analysis-tools

Set of tools to analyze Windows sandboxes for exposed attack surface.

Language:C#Apache-2.0207200

binexport

Export disassemblies into Protocol Buffers

Language:C++Apache-2.0103800

UIforETW

User interface for recording and managing ETW traces

Language:C++Apache-2.0158100

systeminformer

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com

Language:CMIT1098600

petools

PE Tools - Portable executable (PE) manipulation toolkit

MIT103900

mhook

A Windows API hooking library

Language:CNOASSERTION72500

vim-powerline

Moved to powerline/powerline.

Language:VimL286200