whoamisysteminfo's repositories

xssplatform

一个经典的XSS渗透管理平台

Stargazers:0Issues:0Issues:0

CVE-2020-0688

Exploit and detect tools for CVE-2020-0688

Stargazers:0Issues:0Issues:0

SharpDecryptPwd

对密码已保存在 Windwos 系统上的部分程序进行解析,包括:Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品(Xshell,Xftp)。

Stargazers:0Issues:0Issues:0

CVE-2020-0688_EXP

CVE-2020-0688_EXP Auto trigger payload & encrypt method

Stargazers:0Issues:0Issues:0

cve-2020-0689

cve-2020-0688

Stargazers:0Issues:0Issues:0

IIS-Raid

A native backdoor module for Microsoft IIS (Internet Information Services)

Stargazers:0Issues:0Issues:0

webshell-detect-bypass

绕过专业工具检测的Webshell研究文章和免杀的Webshell

Stargazers:0Issues:0Issues:0

Trigger_mysql_udf_windows

Tutorial untuk trigger mysql dengan sys_exec & sys_val pada Windows

Stargazers:0Issues:0Issues:0

PrivescCheck

Privilege Escalation Enumeration Script for Windows

License:BSD-3-ClauseStargazers:0Issues:0Issues:0

xencrypt

A PowerShell script anti-virus evasion tool

License:GPL-3.0Stargazers:0Issues:0Issues:0

fakelogonscreen

Fake Windows logon screen to steal passwords

License:BSD-3-ClauseStargazers:0Issues:0Issues:0

Stowaway

Multi-hop Proxy Tool for pentesters

License:MITStargazers:0Issues:0Issues:0

MiniDumpWriteDump

利用windows api dump进程(Csharp)

Stargazers:0Issues:0Issues:0

poc

Proof of Concepts

License:BSD-3-ClauseStargazers:0Issues:0Issues:0

SharpNetCheck

在内网渗透过程中,对可以出网的机器是十分渴望的。在收集大量弱口令的情况下,一个一个去测试能不能出网太麻烦了。所以就有了这个工具,可配合如wmiexec、psexec等横向工具进行批量检测,该工具可以在dnslog中回显内网ip地址和计算机名,可实现内网中的快速定位可出网机器。

Stargazers:0Issues:0Issues:0

lyncsmash

locate and attack Lync/Skype for Business

Stargazers:0Issues:0Issues:0

Behold3r

👻Behold3r -- 收集指定网站的子域名,并可监控指定网站的子域名更新情况,发送变更报告至指定邮箱

License:MITStargazers:0Issues:0Issues:0
Stargazers:0Issues:0Issues:0

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

License:GPL-3.0Stargazers:0Issues:0Issues:0

get_AV

Windows杀软在线对比辅助

Stargazers:2Issues:0Issues:0

Open-Windows-Exec-Check

Takes known Windows credentials to determine which services on which hosts can be used for RCE. Current Checks: RDP, SMBexec, PSexec, Task Schedule (atexec), DCOM, WMI

Stargazers:0Issues:0Issues:0

how-does-Xmanager-encrypt-password

This is a repo to tell you how Xmanager (XFtp, XShell) encrypt password. Transferred from https://github.com/DoubleLabyrinth/how-does-Xmanager-encrypt-password

Stargazers:0Issues:0Issues:0

Neo-reGeorg

Neo-reGeorg is a project that seeks to aggressively refactor reGeorg

License:GPL-3.0Stargazers:0Issues:0Issues:0

SharpMiniDump

Create a minidump of the LSASS process from memory

License:BSD-3-ClauseStargazers:0Issues:0Issues:0

OneForAll

OneForAll是一款功能强大的子域收集工具

License:GPL-3.0Stargazers:1Issues:0Issues:0

ghostmirror

通过webshell实现的内网穿透工具

Stargazers:0Issues:0Issues:0

Fake-flash.cn

www.flash.cn 的钓鱼页,中文+英文

Stargazers:0Issues:0Issues:0

SharpSQLDump

内网渗透中快速获取数据库所有库名,表名,列名。具体判断后再去翻数据,节省时间。适用于mysql,mssql。

Stargazers:0Issues:0Issues:0

vcpkg

C++ Library Manager for Windows, Linux, and MacOS

License:NOASSERTIONStargazers:0Issues:0Issues:0
License:MITStargazers:1Issues:0Issues:0