ro0tmylove's repositories
ShadeLoader
ShadeLoader is a simple remote shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过
Awesome-Google-Dorks
A collection of Awesome Google Dorks.
awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
cnext-exploits
Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()
CobaltStrike_Cat_4.5
猫猫Cs:基于Cobalt Strike[4.5]二开 (原dogcs二开移植)
Code-audit
代码审计
CVE-2024-22120-RCE
Time Based SQL Injection in Zabbix Server Audit Log --> RCE
CVE-2024-26229-BOF
BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel
cve_2024_0044
CVE-2024-0044: a "run-as any app" high-severity vulnerability affecting Android versions 12 and 13
donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
EDRPrison
Leverage a legitimate driver to silence EDR
ENScan_GO
一款基于各大企业信息API的工具,解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。
fscanOutput
一个用于处理fsacn输出结果的小脚本(尤其面对大量资产的fscan扫描结果做输出优化,让你打点快人一步!!!)
gatherBurp
一款burp插件,请看简介
gost
GO Simple Tunnel - a simple tunnel written in golang
GoThief
集成了截图 键盘记录 剪贴版功能,用于网络限制场景下的信息搜集
java-echo-generator
一款支持高度自定义的 Java 回显载荷生成工具
java-memshell-generator
一款支持高度自定义的 Java 内存马生成工具
JoJoLoader
助力红队成员一键生成免杀木马,使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan
no-defender
A slightly more fun way to disable windows defender + firewall. (through the WSC api)
nowafpls
Burp Plugin to Bypass WAFs through the insertion of Junk Data
OneDorkForAll
An insane list of all dorks taken from everywhere from various different sources.
RedTeaming_CheatSheet
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
RWX_MEMEORY_HUNT_AND_INJECTION_DV
Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.
searchall
强大的敏感信息搜索工具
SigmaPotato
SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection support.
top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙