RedTeam
heapdump敏感信息查询工具,例如查找 spring heapdump中的密码明文,AK,SK等
A swiss army knife for pentesting networks
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点
MDUT - Multiple Database Utilization Tools
👻Stowaway -- Multi-hop Proxy Tool for pentesters
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
Adversary simulation and Red teaming platform with AI
基于各大API的一款企业信息查询工具,为了更快速的获取企业的信息,省去收集的麻烦过程,web端于plat平台上线
A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
A little tool to play with Windows security
Impacket is a collection of Python classes for working with network protocols.
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Amplify network visibility from multiple POV of other hosts