Stars
This repo is about Active Directory Advanced Threat Hunting
[WIP] 整理过去的分享,从零开始的Kubernetes攻防 🧐
绕过专业工具检测的Webshell研究文章和免杀的Webshell
JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps v…
Monitor linux processes without root permissions
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …
A swiss army knife for pentesting networks
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the contr…
Attack and defend active directory using modern post exploitation adversary tradecraft activity
Pre-Built Vulnerable Environments Based on Docker-Compose
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…