Windows常用程序密码读取工具:SharpDecryptPwd
RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.
2018年初整理的一些内网渗透TIPS,后面更新的慢,所以公开出来希望跟小伙伴们一起更新维护~
从wooyun中提取的payload,以及burp插件
Attack and defend active directory using modern post exploitation adversary tradecraft activity
Django REST framework API 指南
A command shell wrapper using only WMI for Microsoft Windows
Auto install WinPcap on Windows(command line)
List of Awesome Red Teaming Resources
A powerful and useful hacker dictionary builder for a brute-force attack
Accurately Locate Smartphones using Social Engineering
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
Six Degrees of Domain Admin
In-depth Attack Surface Mapping and Asset Discovery
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
PoC for Zerologon - all research credits go to Tom Tervoort of Secura