getcode2git's repositories
geacon_pro
重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.
AceLdr
Cobalt Strike UDRL for memory scanner evasion.
Apache-Dubbo-CVE-2023-23638-exp
Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
AvoidRandomKill
一次免杀实践(bypass 360、huorong、windows defender、kaspersky、)
CallBackDump
能过卡巴、核晶、defender等杀软的dump lsass进程工具
cf
云环境利用框架 Cloud Exploitation Framework 方便红队人员在获得 AK 的后续工作
CVE-2023-33246_RocketMQ_RCE_EXPLOIT
CVE-2023-33246 RocketMQ RCE Detect By Version and Exploit
d-eyes
D-Eyes为绿盟科技一款检测与响应工具
debugfs
魔改debugfs,应急溯源版本
electron_shell
Developing a more covert Remote Access Trojan (RAT) tool by leveraging Electron's features for command injection and combining it with remote control methods.
FlavorTown
Various ways to execute shellcode
HideProcessHook
DLL that hooks the NtQuerySystemInformation API and hides a process name
JNDI-Injection-Exploit-Plus
50+ Gadgets(20 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
JuicyPotatoNG
Another Windows Local Privilege Escalation from Service Account to System
Landray-OA-Treexml-Rce
蓝凌OA远程代码执行漏洞批量检查
MYExploit
OAExploit一款基于产品的一键扫描工具。
POC1
2023HW漏洞整理,收集整理漏洞EXp/POC,大部分漏洞来源网络,目前收集整理了100多个poc/exp
QAX_VPN_Crack
奇安信VPN任意用户密码重置
rproxy
自动化的代理服务器
ShellcodeLoader
该项目为Shellocde加载器,详细介绍了我们如何绕过防病毒软件,以及该工具如何使用
WatchAD2.0
WatchAD2.0是一款针对域威胁的日志分析与监控系统
Yearning
🐳 A most popular sql audit platform for mysql
YongyouNC-Unserialize-Tools
用友NC反序列化漏洞payload生成
ysoserial-1
ysoserial for 1nhann