Command and Control for C# Writing

BCS（北京网络安全大会）2019 红队行动会议重点内容

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique present…

Impacket is a collection of Python classes for working with network protocols.

超级弱口令检查工具是一款Windows平台的弱口令审计工具，支持批量多线程检查，可快速发现弱密码、弱口令账号，密码支持和用户名结合进行检查，大大提高成功率，支持自定义服务端口和字典。

一款有图形界面的RDP(3389)口令检测工具

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

dump

Metasploit Framework

Confluence 未授权 RCE (CVE-2019-3396) 漏洞

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/Exploit/APT/0day/Shellcode/Payload/priviledge/OverFlow/WebShell/PenTest)

windows-kernel-exploits Windows平台提权漏洞集合

A fully featured Windows backdoor that uses Gmail as a C&C server

A PoC backdoor that uses Gmail as a C&C server

Useful PowerShell scripts

Python botnet and backdoor

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it w…

github泄露扫描系统

Short handy snippets from the @mwrlabs team

Python Remote Administration Tool (RAT) to gain meterpreter session

CRL Monitor - X.509 Certificate Revocation List monitoring and X.509/Subject caching

Google Drive file uploader

Tools to analyze SSL/TLS Client hellos from a packet capture.