xx_smile's starred repositories
ScopeSentry-Scan
ScopeSentry工具扫描端源码
ScopeSentry
ScopeSentry-网络空间测绘、子域名枚举、端口扫描、敏感信息发现、漏洞扫描、分布式节点
django-DefectDojo
DevSecOps, ASPM, Vulnerability Management. All on one platform.
CS-AutoPostChain
基于 OPSEC 的 CobaltStrike 后渗透自动化链
Z-Godzilla_ekp
哥斯拉webshell管理工具二次开发规避流量检测设备
LinuxCheck
Linux应急处置/信息搜集/漏洞检测工具,支持基础配置/网络流量/任务计划/环境变量/用户信息/Services/bash/恶意文件/内核Rootkit/SSH/Webshell/挖矿文件/挖矿进程/供应链/服务器风险等13类70+项检查
WindowsBaselineAssistant
Windows安全基线核查加固助手
mssql-command-tool
xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作,上传,job等相应操作。
Cobalt-Strike-CheatSheet
Some notes and examples for cobalt strike's functionality
MetasploitModules_0x727
Metasploit Modules Development
smbclient-ng
smbclient-ng, a fast and user friendly way to interact with SMB shares.
nmap-formatter
A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot), sqlite, excel and d2-lang. Simply put it's nmap converter.
MSSQL-Fileless-Rootkit-WarSQLKit
WarSQLKit is a fileless rootkit and attack tool I developed for MS-SQL. With this tool you can rootkit the SQL service that uses CLR on MS-SQL servers. Thus, malicious code can be executed in the process memory of the SQL service without creating a malicious function
SqlKnife_0x727
适合在命令行中使用的轻巧的SQL Server数据库安全检测工具
WeblogicTool
WeblogicTool,GUI漏洞利用工具,支持漏洞检测、命令执行、内存马注入、密码解密等(深信服深蓝实验室天威战队强力驱动)
SharpSQLTools
SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
Smbtouch-Scanner
Automatically scan the inner network to detect whether they are vulnerable.