一个攻防知识仓库 Red Teaming and Offensive Security
Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.
翻译 - 网络管道工手册的免费副本
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
翻译 - RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec
mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse
Self-developed tools for Lateral Movement/Code Execution
翻译 - 自行开发的横向移动/代码执行工具
A tool to make socks connections through HTTP agents
a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and t...
翻译 - 特权升级枚举工具包(64/32),具有Web API集成的快速,智能枚举。掌握自己的发现
APT38 Tactic PoC for Stealing 0days from security professionals
Manipulating and Abusing Windows Access Tokens.
Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
Suricata rules for network anomaly detection
This tool can be used during internal penetration testing to dump Windows credentials from an already-compromised host. It allows one to dump SYSTEM, SECURITY and SAM hives and once copied to the atta...
翻译 - 可以在内部渗透测试期间使用此工具从已受损的主机中转储Windows凭据。它允许一个转储SYSTEM,SECURITY和SAM配置单元,并且一旦复制到攻击者计算机上,就提供了删除这些文件以清除跟踪的选项。
.NET 4.0 Scheduled Job Lateral Movement
#Awesome#A set of instructions, command and techniques that help during an Active Directory Assessment.
Inject RDPThief into memory with PowerShell.
conduct lateral movement attack by leveraging unfiltered services display name to smuggle binaries as chunks into the target machine
Invoke-KleptoKitty - Deploys Payloads and collects credentials