树莓狗's repositories
lazyfinder
快速遍历目标目录中所有指定后缀文件中包含的敏感信息
antiVirusCheck
cobaltstrike 直接判断目标beacon存在的杀软
UserClone-rs
windows用户上下文克隆,基于rust
domain-admin
域名SSL证书监测平台
Begin-Pentesting-with-Apple-Silicon
Apple M1/M2芯片渗透环境兼容性指南
VcenterKiller
一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005以及log4j,提供一键上传webshell,命令执行或者上传公钥使用SSH免密连接
Awesome-RedTeam-Cheatsheet
Active Directory & Red-Team Cheat-Sheet in constant expansion.
black-hat-rust
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
command
红队常用命令速查
CVE-2021-4034
CVE-2021-4034 1day
CVE-2021-4035
CVE-2021-4034, For Webshell Version.
CVE-2022-0847-DirtyPipe-Exploit
A root exploit for CVE-2022-0847 (Dirty Pipe)
CVE-2022-30190-follina-Office-MSDT-Fixed
CVE-2022-30190-follina.py-修改版,可以自定义word模板,方便实战中钓鱼使用。
exe_who
Executables on Disk? Bleh 🤮
FilelessPELoader
Loading Remote AES Encrypted PE in memory , Decrypted it and run it
Heroinn
A cross platform C2/post-exploitation framework.
hikvision
Hikvision log4j PoC
hoaxshell
An unconventional Windows reverse shell, currently undetected by Microsoft Defender and various other AV solutions, solely based on http(s) traffic.
IEyes
icp备案查询
min-sized-rust
🦀 How to minimize Rust binary size 📦
moonwalk
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
OffensiveRust
Rust Weaponization for Red Team Engagements.
RedGuard
RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
rogue_mysql_server
一个支持 go, php, python, java, 原生命令行等多种语言下客户端的 mysql 恶意服务器
rust_proc_list
Get Windows Process List in Rust
Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
SharpXDecrypt
Xshell全版本密码解密工具
TOML
汤小明语的官方文档汉化。唯一不依赖缩进的完美配置文件格式。Wiki 中有教程。
win32api-practice
Offensive tools written for practice purposes