Haizhu's repositories
360SafeBrowsergetpass
这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具,用于节省红队工作量,通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
adsec
An introduction to Active Directory security
AV_Evasion_Tool
掩日 - 免杀执行器生成工具
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
pystinger
bypass firewall by webshell 一款使用webshell进行流量转发的出网工具
Blackbone
Windows memory hacking library
CrossNet-Beta
红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。
CSAgent
CobaltStrike 4.x通用白嫖及汉化加载器
CSharp-Tools
.NET C# Tools
CVE-2020-0787-EXP-ALL-WINDOWS-VERSION
Support ALL Windows Version
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
DLLHijackTest
DLL and PowerShell script to assist with finding DLL hijacks
FUCK-GFW
记录各个包管理器使用代理的方法, 因为GFW已经浪费了已经数不清的时间, FUCK GFW
GOAD
game of active directory
Intranet_Penetration_Tips
2018年初整理的一些内网渗透TIPS,后面更新的慢,所以公开出来希望跟小伙伴们一起更新维护~
Malleable-C2-Profiles
Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.
MicroBackdoor
Small and convenient C2 tool for Windows targets
OffensiveNim
My experiments in weaponizing Nim (https://nim-lang.org/)
Pentest_Note
渗透测试常规操作记录
pypykatz
Mimikatz implementation in pure Python
Sunflower_get_Password
一款针对向日葵的识别码和验证码提取工具
Threat-Hunting-and-Detection
Repository for threat hunting and detection queries, tools, etc.
vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
WinPwnage
UAC bypass, Elevate, Persistence methods