Stars
AI Red Teaming playground labs to run AI Red Teaming trainings including infrastructure.
The following is a simple example of how LLMs and langchain agents can simplify asking questions to understand the security posture of a cloud environment.
(持续更新)本项目为存储团队Bot小K每日监测到的最新POC,EXP,以及自己平时总结的POC,为了方便渗透测试过程中,漏洞查询,脱网环境的渗透测试。
CRUSH aims to crawl historical vulnerability data from major platforms and monitor daily updates.
A curated list of GPT agents for cybersecurity
直播源相关资源汇总 📺 💯 IPTV、M3U —— 勤洗手、戴口罩,祝愿所有人百毒不侵
一个漏洞 PoC 知识库。A knowledge base for vulnerability PoCs(Proof of Concept), with 1k+ vulnerabilities.
✨ Light and Fast AI Assistant. Support: Web | iOS | MacOS | Android | Linux | Windows
微信客户端取证,可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录));支持获取多用户信息,不定期更新新版本偏移,目前支持所有新版本、正式版本
Bypass firewall for traffic forwarding using webshell
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost
A tool to perform Kerberos pre-auth bruteforcing
Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Six Degrees of Domain Admin
haproxy for windows (it is very easier to transfer others server)
📡 PoC auto collect from GitHub.
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
APT & CyberCriminal Campaign Collection
An evil RAT (Remote Administration Tool) for macOS / OS X.