This is the tool to dump the LSASS process on modern Windows 11

Lightning-fast internal network scanner

A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Integrates with LLM agents via MCP for enhanced analysis capabil…

一款java漏洞集合工具

Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-software in lateral movement like WMIHACKER.

Win32 and Kernel abusing techniques for pentesters

Mimikatz implementation in pure Python

Windows remote execution multitool

mTLS-Encrypted Back-Connect SOCKS5 Proxy

about thinkphp lang RCE QVD-2022-46174 v6.0.1 <= Thinkphp <= v6.0.13 Thinkphp v5.0.x Thinkphp v5.1.x

个人学习笔记，多少有借鉴。请谅解。博客主页：

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

一个基于✨HOOK机制的微信机器人，支持🌱安全新闻定时推送【FreeBuf，先知，安全客，奇安信攻防社区】，👯Kfc文案，⚡漏洞查询，⚡手机号归属地查询，⚡知识库查询，🎉星座查询，⚡天气查询，🌱摸鱼日历，⚡微步威胁情报查询， 🐛视频，⚡图片，👯帮助菜单。📫 支持积分功能，⚡支持自动拉人，，🌱自动群发，👯Ai回复（国内主流AI模型，扣子，FastGpt，Dify全面支持！），⚡视频号解析，😄自…

构建优化高效的渗透 fuzz 字典合集

dddd是一款使用简单的批量信息收集,供应链漏洞探测工具，旨在优化红队工作流，减少伤肝的机械性操作。支持从Hunter、Fofa批量拉取目标

面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams

A Way Dump Windows Local Hash

Eeyes(棱眼)-快速筛选真实IP并整理为C段

Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles

实战沉淀字典

MeshAgent used along with MeshCentral to remotely manage computers. Many variations of the background management agent are included as binaries in the MeshCentral project.

一款代理扫描器

Burp插件，Malleable C2 Profiles生成器；可以通过Burp代理选中请求，生成Cobalt Strike的profile文件(CSprofile)

DecryptTools-综合解密

PC客户端（C-S架构）渗透测试checklist / Client side(C-S) penetration checklist

爬网站JS文件，自动fuzz api接口，指定api接口（针对前后端分离项目，可指定后端接口地址），回显api响应

A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.