theNULLthe

aLIEz

杀内存马的工具，欢迎code review，提出更好的意见

As-Exploits

**蚁剑后渗透框架

Babuk-Builder-2021

CodeQL

《深入理解CodeQL》Finding vulnerabilities with CodeQL.

DShell

DanceShell，一个集远程反向shell连接与控制、常见漏洞扫描、自写杂项脚本于一身的安全工具。

CrackMapExec

A swiss army knife for pentesting networks

CreateHiddenAccount

A tool for creating hidden accounts using the registry.

CVE-2021-1732-Exploit

CVE-2021-1732 Exploit

DriedMango

GUI Exploit Tool For RedTeam

GSLibrary

轻量级知识库&POC管理平台

GUI-POC-EXP

随手写写

GUI_Tools

一个由各种图形化渗透工具组成的工具集

HackJava

《深入理解Java代码审计》

JSPHorse

Super JSP Webshell

Knowledge-Base

Knowledge Base 慢雾安全团队知识库

log4j-affected-db

MS15034Scan

MS15034Scan / HTTP.SYS缓冲区溢出远程代码执行

MS17010-Scan

MS17010 Scan / 转自长亭科技

PeiQi-WIKI-POC

鹿不在侧，鲸不予游🐋

Penetration_Testing_POC

有关渗透测试的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Pentest-tools

Intranet penetration tools

poc2jar

java编写，python作为辅助依赖的漏洞验证、利用工具，另外添加了进程查找模块、编码模块、命令模块、常见漏洞利用GUI模块，加快测试效率

pocassistdb

database of pocassist（漏洞库）

r77-rootkit

Ring 3 rootkit with single file installer and fileless persistence that hides processes, files, network connections, etc.

RCE-0-day-for-GhostScript-9.50

RCE 0-day for GhostScript 9.50 - Payload generator

RocB

鹏 RocB - Java代码审计IDEA插件 SAST

SigFlip

SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.

SSHCheck

Code By:Tas9er / SSH弱口令爆破助手

StopDefender

Stop Windows Defender programmatically

xmrig

RandomX, CryptoNight, AstroBWT and Argon2 CPU/GPU miner