Beast code in Giters

hhhhh's repositories

LinuxCheck

linux信息收集/应急响应/常见后门检测脚本

Language:ShellMIT1 10

AndroSpy

An Android RAT that written in C# by me

Language:C#010

ARL

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Language:Python000

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

Language:PowerShellMIT000

BurpSuite-Extender-fastjson

在瓦都尅师傅的脚本改了一个bp自动检测fastjson rce的py插件，可检测1.2.24和1.2.47。若存在漏洞自动标注该流量，并在output中输出内容。 python脚本自行修改ceye和token值。 Reference：https://www.w2n1ck.com/article/44/

Language:Python010

CVE-2019-7238_Nexus_RCE_Tool

CVE-2019-7238 Nexus RCE漏洞图形化一键检测工具。CVE-2019-7238 Nexus RCE Vul POC Tool.

000

DNSAttack

DNSAttack Project. DNS攻击脚本。

Language:Python010

du-app

毒 app sign 签名 js 解密的 python 复写版本

Language:Python000

FastjsonExploit

Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）

Language:Java010

gopacket

Provides packet processing capabilities for Go

Language:GoBSD-3-Clause010

information-security

A place where I can create, collect and share tooling, resources and knowledge about information security.

000

maigret

🕵️‍♂️ Collect a dossier on a person by username from thousands of sites

Language:PythonMIT000

metasploit-framework

Metasploit Framework

Language:RubyNOASSERTION010

Middleware-Vulnerability-detection

CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15

Language:Python010

NTLMRawUnhide.py is a Python3 script designed to parse network packet capture files and extract NTLMv2 hashes in a crackable format. The following binary network packet capture formats are supported: *.pcap *.pcapng *.cap *.etl

Language:PythonMIT000

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Language:GoMIT000

PowerHuntShares

PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.

Language:PowerShellNOASSERTION000

PowerSploit

PowerSploit - A PowerShell Post-Exploitation Framework

Language:PowerShellNOASSERTION000

RedGuard

RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.

Language:GoGPL-2.0000

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Language:PHPMIT010

suricata-rules

Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等

000

ToRat

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

Language:GoUnlicense010

traefik

The Cloud Native Application Proxy

Language:GoMIT000

Vegile

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

Language:ShellGPL-3.0010

WX-T

hhhhh's repositories

LinuxCheck

AndroSpy

ARL

atomic-red-team

BurpSuite-Extender-fastjson

CVE-2019-7238_Nexus_RCE_Tool

DNSAttack

du-app

FastjsonExploit

go-gin-example

gopacket

information-security

maigret

metasploit-framework

Middleware-Vulnerability-detection

NTLMRawUnHide

nuclei

PowerHuntShares

PowerSploit

RedGuard

SecLists

suricata-rules

ToRat

traefik

Vegile

VulDB_Spider

Vulnerability-analysis

vulnerability-list

windows-arm

windows_baseline