Taro's repositories
365-Stealer
365-Stealer is the tool written in python3 which steals data from victims office365 by using access_token which we get by phishing. It steals outlook mails, attachments, OneDrive files, OneNote notes and injects macros.
ARL
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
bombus
合规审计平台
bypass-av-note
免杀技术大杂烩---乱拳也打不死老师傅
CobaltStrike
CobaltStrike's source code
CobaltstrikeSource
Cobaltstrike4.1 Source
CVE-2021-31166
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
Dictionary-Of-Pentesting
渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目
espoofer
An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
Fofa-gui
Fofa采集工具-自修改版本
GodzillaSource
哥斯拉源码-v3.03-godzilla
goHackTools
Hacker tools on Go (Golang)
Hack-Tools
The all-in-one Red Team extension for Web Pentester 🛠
HackBrowserData
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
HFish
🍯 A Most Convenient Honeypot Platform. 🐝🐝🐝 🐝🐝
jumpserver
JumpServer 是全球首款开源的堡垒机,是符合 4A 的专业运维安全审计系统。
Kernelhub
Windows 提权漏洞合集,附带编译环境,演示GIF图,漏洞详细信息,可执行文件
linglong
一款甲方资产巡航扫描系统。系统定位是发现资产,进行端口爆破。帮助企业更快发现弱口令问题。主要功能包括: 资产探测、端口爆破、定时任务、管理后台识别、报表展示
Mail-Probe
邮箱探针后台管理系统
OffensiveNim
My experiments in weaponizing Nim (https://nim-lang.org/)
Osiris-Sourcecode
Alleged source code leak of Osiris banking trojan
Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等,欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Pentest-tools
内网渗透工具
PortBrute
一款跨平台小巧的端口爆破工具,支持爆破FTP/SSH/SMB/MSSQL/MYSQL/POSTGRESQL/MONGOD / A cross-platform compact port blasting tool that supports blasting FTP/SSH/SMB/MSSQL/MYSQL/POSTGRESQL/MONGOD
privacy
个人数据泄漏检测网站,适用于 QQ / 京东 / 顺丰 / 微博。
ProxyPool
An Efficient ProxyPool with Getter, Tester and Server
rengine
reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan engines, which can be used to scan the websites, endpoints, and gather information.
tpotce
🍯 T-Pot - The All In One Honeypot Platform 🐝
vulmap
Vulmap是一款漏洞扫描工具,可对Web容器、Web服务器、Web中间件以及CMS等Web程序进行漏洞扫描,并且具备漏洞利用功能。 相关测试人员可以使用vulmap检测目标是否存在特定漏洞,并且可以使用漏洞利用功能验证漏洞是否真实存在。
xray-crack
xray社区高级版证书生成,仅供学习研究,正常使用请支持正版