landrayexploit

蓝凌OA漏洞利用工具

malleable-c2-randomizer

A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls

micro8

Gitbook

mysql-magic

dump mysql client password from memory

mysqlt

伪造Myslq服务端,并利用Mysql逻辑漏洞来获取客户端的任意文件反击攻击者

nacos-export

neurax

A library for constructing self-spreading binaries

next-terminal

Next Terminal是一个简单好用安全的开源交互审计系统，支持RDP、SSH、VNC、Telnet、Kubernetes协议。

nosqlilab

A lab for playing with NoSQL Injection

notes

documents

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

orcus-1.9.1-src

Full Orcus 1.9.1 Source Code

pdtm

ProjectDiscovery's Open Source Tool Manager

phishingexploit

PhishingExploit

pinduoduo_backdoor

拼多多apk内嵌提权代码，及动态下发dex分析

pinduoduo_backdoor_code

拼多多事件的脱壳后的部分代码

rebeacon_src

red-tldr

red-tldr is a lightweight text search tool, which is used to help red team staff quickly find the commands and key points they want to execute, so it is more suitable for use by red team personnel with certain experience.

saidict

弱口令,敏感目录,敏感文件等渗透测试常用攻击字典

sbcve

不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。

seeyon_exp_ultra

seeyon致远OA全漏洞检测与利用

sharpbeacon

CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能

shellcodeloader-rs

单纯使用Microsoft给出的windows-sys库与windows库实现一个最基本的shellcodeloader

sliver

Adversary Emulation Framework

spring-rce-war

spring4shell_behinder

CVE-2022-22965写入冰蝎webshell脚本

springbootexploit

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

springspider

Spring Actuator端点的BurpSuite被动扫描插件。

superman

Kill processes protected by antivirus during offensive activities.

sysminidumpwd

A lsass dump tool using MiniDumpWriteDump & syscall(NtOpenProcess) technique. only tested on windows 11 with defender enabled:-)