Giters
JINX (kkin77)

kkin77

Geek Repo

8

followers

86

following

269

stars

Location:Home

Github PK Tool:Github PK Tool

JINX's starred repositories

Execute-CMD-From-HKCU

Executes whatever commands are stored in HKCU\Software\Microsoft\exe as a silent CMD window

Language:C#Stargazers:7Issues:0Issues:0

360SafeBrowsergetpass

这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具,用于节省红队工作量,通过下载浏览器数据库、记录密钥来离线解密浏览器密码。

Language:C#Stargazers:605Issues:0Issues:0

sylas

根据多个不同地区进行聚合查询以获取更多 fofa 数据

Language:GoStargazers:29Issues:0Issues:0

Antivirus_R3_bypass_demo

分别用R3的0day与R0的0day来干掉杀毒软件

Language:C++License:MITStargazers:397Issues:0Issues:0

GoodbyeEDR

Language:C++Stargazers:79Issues:0Issues:0

hide_execute_memory

隐藏可执行内存

Language:CLicense:MITStargazers:242Issues:0Issues:0

TFirewall

防火墙出网探测工具,内网穿透型socks5代理

Language:GoStargazers:266Issues:0Issues:0

LandrayExploit

蓝凌OA漏洞利用工具/前台无条件RCE/文件写入

Stargazers:20Issues:0Issues:0

JNDI-Exploit-Kit

Language:JavaLicense:MITStargazers:22Issues:0Issues:0

JNDI-Inject-Exploit

解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入

Language:JavaLicense:MITStargazers:663Issues:0Issues:0

Binary-Learning

二进制安全相关的学习笔记,感谢滴水逆向的所有老师辛苦教学。

Stargazers:1324Issues:0Issues:0

Yasso

强大的内网渗透辅助工具集-让Yasso像风一样 支持rdp,ssh,redis,postgres,mongodb,mssql,mysql,winrm等服务爆破,快速的端口扫描,强大的web指纹识别,各种内置服务的一键利用(包括ssh完全交互式登陆,mssql提权,redis一键利用,mysql数据库查询,winrm横向利用,多种服务利用支持socks5代理执行)

Language:GoStargazers:1566Issues:0Issues:0

Sylas

新一代子域名主/被动收集工具 - Subdomain automatic/passive collection tool

Language:JavaLicense:GPL-3.0Stargazers:483Issues:0Issues:0

Fastjson-pentest

Fastjson反序列化环境,存在漏洞演示版本

Language:JavaLicense:MITStargazers:7Issues:0Issues:0

MySQL_Fake_Server

MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize

Language:PythonStargazers:1227Issues:0Issues:0

JustC2file

Burp插件,Malleable C2 Profiles生成器;可以通过Burp代理选中请求,生成Cobalt Strike的profile文件(CSprofile)

Language:JavaStargazers:266Issues:0Issues:0

Obfuscate

Guaranteed compile-time string literal obfuscation header-only library for C++14

Language:C++License:UnlicenseStargazers:1047Issues:0Issues:0

JspFinder

一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)

Language:JavaLicense:Apache-2.0Stargazers:174Issues:0Issues:0

ShellCodeFramework

绕3环的shellcode免杀框架

Language:CStargazers:555Issues:0Issues:0

ImpulsiveDLLHijack

C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.

Stargazers:17Issues:0Issues:0

bloodyAD

BloodyAD is an Active Directory Privilege Escalation Framework

Language:PythonLicense:MITStargazers:1201Issues:0Issues:0

SecMind

安全导图

Stargazers:251Issues:0Issues:0

RustScan

🤖 The Modern Port Scanner 🤖

Language:RustLicense:GPL-3.0Stargazers:14492Issues:0Issues:0

netspy

netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)

Language:GoStargazers:1970Issues:0Issues:0

wmiexec-RegOut

Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-software in lateral movement like WMIHACKER.

Language:PythonStargazers:280Issues:0Issues:0

blueming

备份文件扫描,并自动进行下载

Language:GoStargazers:130Issues:0Issues:0

log4jscanner

A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.

Language:GoLicense:Apache-2.0Stargazers:1566Issues:0Issues:0

LinuxCheck

Linux应急处置/信息搜集/漏洞检测工具,支持基础配置/网络流量/任务计划/环境变量/用户信息/Services/bash/恶意文件/内核Rootkit/SSH/Webshell/挖矿文件/挖矿进程/供应链/服务器风险等13类70+项检查

Language:ShellLicense:MITStargazers:1783Issues:0Issues:0

WMEye

WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement

Language:C#License:MITStargazers:361Issues:0Issues:0

javaweb-codereview

javaweb-codereview

Language:JavaStargazers:27Issues:0Issues:0