lzzbb

followers

following

stars

http://1zzzzz.com

lzz's starred repositories

Covenant

Covenant is a collaborative .NET C2 framework for red teamers.

Language:C#GPL-3.04116 121 308

hoaxshell

A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.

Language:PythonBSD-2-Clause2974 46 46

DefenderCheck

Identifies the bytes that Microsoft Defender flags on.

Language:C#BSD-3-Clause2240 43 18

pwn_jenkins

Notes about attacking Jenkins servers

Language:Python1939 46 2

wxapkg

微信小程序反编译工具，.wxapkg 文件扫描 + 解密 + 解包工具

Language:Go1692 16 30

superSearchPlus

superSearchPlus是聚合型信息收集插件，支持综合查询，资产测绘查询，信息收集敏感信息提取 js资源扫描目录扫描 vue组件扫描整合了目前常见的资产测绘平台专为白帽子提供快速侦测目标。

Language:HTML1290 21 21

AD_Miner

AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses

Language:JavaScriptGPL-3.01058 17 33

EDRSilencer

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

Language:CMIT1027 13 9

Tokenvator

A tool to elevate privilege with Windows Tokens

Language:C#1014 37 14

I-Wanna-Get-All

OA漏洞利用工具

ShellcodeFluctuation

An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting its contents

Language:C++MIT894 19 3

Pillager

Pillager是一个适用于后渗透期间的信息收集工具

Language:C#MIT877 9 18

XiebroC2

支持多人协作的渗透测试C2、Lua插件扩展、域前置/CDN上线、自定义多个模块、自定义sRDI、文件管理、进程管理、内存加载、截图、反向代理

Language:Go856 17 29

LearnJavaMemshellFromZero

【三万字原创】完全零基础从0到1掌握Java内存马，公众号：追梦信安

ChromeKatz

Dump cookies and credentials directly from Chrome/Edge process memory

Language:C++BSD-3-Clause664 7 7

CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability

Microsoft-Outlook-Remote-Code-Execution-Vulnerability

Language:Python662 10 1

SOAPHound

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

Language:C#GPL-3.0617 11 10

MultiDump

MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.

Language:CNOASSERTION477 5 4

Vulhub-Reproduce

一个Vulhub漏洞复现知识库

RunPE

C# Reflective loader for unmanaged binaries.

Language:C#BSD-3-Clause415 11 15

autobloody

Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound

Language:PythonMIT394 5 3

CVE-2022-30190-follina-Office-MSDT-Fixed

CVE-2022-30190-follina.py-修改版，可以自定义word模板，方便实战中钓鱼使用。

Language:Python392 4 2

ldeep

In-depth ldap enumeration utility

Language:PythonMIT384 6 20

forest-trust-tools

Proof-of-concept tools for my AD Forest trust research

Language:PythonMIT179 3 2

ScreenshotBOFPlus

Take a screenshot without injection for Cobalt Strike

Language:CMIT166 3 3

Log4jHorizon

Exploiting CVE-2021-44228 in VMWare Horizon for remote code execution and more.

Language:Python118 6 2

krbjack

A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.

Language:PythonNOASSERTION88 3 1

CVE-2023-22527-Godzilla-MEMSHELL

CVE-2023-22527 内存马注入工具

Language:Java68 10

Invoke-Nanodump

HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection

Language:PowerShell52 2 1

EntropyCalc_Go

File entropy calculator - Golang

Language:Go21 20