Keybo@rd007's repositories
autoharness
A tool that automatically creates fuzzing harnesses based on a library
Azur3Alph4
Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved) position.
BadAssMacros
BadAssMacros - C# based automated Malicous Macro Generator.
BeaconEye
Hunts out CobaltStrike beacons and logs operator command output
book
리버싱 핵심원리 - 소스 코드 및 실습 예제
bypassAV
借助Win-PS2EXE项目编写cna脚本方便快速生成免杀可执行文件
CamPhish
Grab cam shots from target's phone front camera or PC webcam just sending a link.
CredPhish
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
CSIRT-Collect
PowerShell script to collect memory and (triage) disk forensics
dnsmonster
Passive DNS Capture/Monitoring Framework
EDD
Enumerate Domain Data
EHole-1
EHole(棱洞)2.0 重构版-红队重点攻击系统指纹探测工具
go-shellcode
A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques.
HookHunter
Analyze patches in a process
injectAmsiBypass
Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
LazySign
Create fake certs for binaries using windows binaries and the power of bat files
Mimikore
.NET 5 Single file Application
mobileAudit
Django application that performs SAST and Malware Analysis for Android APKs
OffenSiveCSharp-1
Offensive C# Tooling
OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
PageTableInjection
Code Injection, Inject malicious payload via pagetables pml4.
PickleC2
PickleC2 is a post-exploitation and lateral movements framework
ProxyShell
ProxyShell POC Exploit : Exchange Server RCE (ACL Bypass + EoP + Arbitrary File Write)
RedTeamTools
记录自己编写、修改的部分工具
riskscanner
RiskScanner 是开源的多云安全合规扫描平台,通过 Cloud Custodian 的 YAML DSL 定义扫描规则,实现对主流公(私)有云资源的安全合规扫描及使用优化建议。
SigFlip
SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.
zuthaka
Zuthaka is an open source application designed to assist red-teaming efforts, by simplifying the task of managing different APTs and other post-exploitation tools.