hittimes's repositories
jd_seckill
京东秒杀商品抢购,目前只支持茅台抢购,不支持其他商品!
ary
Ary 是一个集成类工具,主要用于调用各种安全工具,从而形成便捷的一键式渗透。
ATTCK-Tools-library
TimelineSec ATT&CK 工具库
BOFs
Collection of beacon object files for use with Cobalt Strike to facilitate 🐚.
CVE-2019-1040
CVE-2019-1040 with Exchange
CVE-2021-3157
PoC for CVE-2021-3156 (sudo heap overflow)
dcpwn
an impacket-dependent script exploiting CVE-2019-1040
delete-self-poc
A way to delete a locked file, or current running executable, on disk.
dnspooq
DNSpooq - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)
Dumpert
LSASS memory dumper using direct system calls and API unhooking.
Glass
Glass是一款针对资产列表的快速指纹识别工具,通过调用Fofa Api快速查询资产信息并识别重点资产的指纹,也可针对IP/IP段或资产列表进行快速的指纹识别。
HackBrowserData
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
LuWu
红队基础设施自动化部署工具
MDAT
MDAT - Multiple Database Attacking Tool
POC-T
渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
pocsuite3
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Quasar
Remote Administration Tool for Windows
SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
UAC_Exploit
Escalate as Administrator bypassing the UAC affecting administrator accounts only.
vulmap
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能
Vulnerability
此项目将不定期从棱角社区对外进行公布一些最新漏洞。
w5
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
weblive
批量获取网站基本信息
Z1-AggressorScripts
适用于Cobalt Strike的插件
Zero-box
零组小工具