coward's repositories
520apkhook
对安卓APP注入MSF PAYLOAD,并且对手机管家进行BYPASS。
Awesome-Asset-Discovery
List of Awesome Asset Discovery Resources
BOF.NET
A .NET Runtime for Cobalt Strike's Beacon Object Files
CobaltStrikeReflectiveLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
CVE-2021-33766
ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit
Eternalblue
Eternalblue written in CSharp. Contains version detection, vulnerability scanner and exploit of MS17-010
flask_memory_shell
Flask 内存马
GetMail
利用NTLM Hash读取Exchange邮件
goproxy
🔥 Proxy is a high performance HTTP(S) proxies, SOCKS5 proxies,WEBSOCKET, TCP, UDP proxy server implemented by golang. Now, it supports chain-style proxies,nat forwarding in different lan,TCP/UDP port forwarding, SSH forwarding.Proxy是golang实现的高性能http,https,websocket,tcp,socks5代理服务器,支持内网穿透,链式代理,通讯加密,智能HTTP,SOCKS5代理,黑白名单,限速,限流量,限连接数,跨平台,KCP支持,认证API。
Hello-Java-Sec
☕️ Java Security,安全编码和代码审计
HellsGate
Original C Implementation of the Hell's Gate VX Technique
inceptor
Template-Driven AV/EDR Evasion Framework
kiterunner
Contextual Content Discovery Tool
netch
A simple proxy client
PLtools
整理一些内网常用渗透小工具
Seatbelt
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
SharpBeacon
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
SharpStrike
A Post exploitation tool written in C# uses either CIM or WMI to query remote systems.
ShellcodeFluctuation
An in-memory evasion technique fluctuating shellcode memory protection between RW & RX and encrypting/decrypting contents
SourceDetector-dist
编译好的SourceDetector,这小b登编译一次真折磨人!!!
TXPortMap
Port Scanner & Banner Identify From TianXiang
unDefender
Killing your preferred antimalware by abusing native symbolic links and NT paths.
Ventoy
A new bootable USB solution.
Vulnerability
此项目将不定期从棱角社区对外进行公布一些最新漏洞。
WebclientServiceScanner
Python tool to Check running WebClient services on multiple targets based on @leechristensen
WechatDecrypt
微信消息解密工具