coward's repositories
AD-Pentest-Notes
用于记录内网渗透(域渗透)学习 :-)
As-Exploits
**蚁剑后渗透框架
AsyncRAT-C-Sharp
Open-Source Remote Administration Tool For Windows C# (RAT)
bypass-av-note
免杀技术大杂烩---乱拳也打不死老师傅
C2concealer
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
Callback_Shellcode_Injection
POCs for Shellcode Injection via Callbacks
CobaltStrike
CobaltStrike's source code
domain_hunter_pro
domain_hunter的内部版本
ExecuteAssembly
Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS headers, Unlinking .NET related modules, bypassing ETW+AMSI, avoiding EDR hooks via NT static syscalls (x64) and hiding imports by dynamically resolving APIs (hash).
FrpProPlugin
frp0.33修改版,过流量检测,免杀,支持加载远程配置文件可用于cs直接使用的插件
LinkFinder
A python script that finds endpoints in JavaScript files
lsassy
Extract credentials from lsass remotely
MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
MirrorDump
Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in memory
ntlm-info
Retrieve host information from NTLM
pe_to_shellcode
Converts PE into a shellcode
Powermad
PowerShell MachineAccountQuota and DNS exploit tools
redteam_vul
红队作战中比较常遇到的一些重点系统漏洞整理。
RustScan
🤖 The Modern Port Scanner 🤖
SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
SharpRDP
Remote Desktop Protocol .NET Console Application for Authenticated Command Execution
sharpwmi
sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。
shellcodeloader
shellcodeloader
spring-security-book-samples
《深入浅出Spring Security》一书配套源码。
Struts2-Scan
Struts2全漏洞扫描利用工具
x1DecoderPlus
AntSword(蚁剑)全参数流量XOR和Base64加伪装WebShell