Arm!tage's Projects
蓝凌OA漏洞利用工具
A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls
Gitbook
dump mysql client password from memory
伪造Myslq服务端,并利用Mysql逻辑漏洞来获取客户端的任意文件反击攻击者
A library for constructing self-spreading binaries
Next Terminal是一个简单好用安全的开源交互审计系统,支持RDP、SSH、VNC、Telnet、Kubernetes协议。
A lab for playing with NoSQL Injection
documents
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Full Orcus 1.9.1 Source Code
ProjectDiscovery's Open Source Tool Manager
PhishingExploit
拼多多apk内嵌提权代码,及动态下发dex分析
拼多多事件的脱壳后的部分代码
red-tldr is a lightweight text search tool, which is used to help red team staff quickly find the commands and key points they want to execute, so it is more suitable for use by red team personnel with certain experience.
弱口令,敏感目录,敏感文件等渗透测试常用攻击字典
不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。
seeyon致远OA全漏洞检测与利用
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
单纯使用Microsoft给出的windows-sys库与windows库实现一个最基本的shellcodeloader
Adversary Emulation Framework
CVE-2022-22965写入冰蝎webshell脚本
项目是根据LandGrey/SpringBootVulExploit清单编写,目的hvv期间快速利用漏洞、降低漏洞利用门槛。
Spring Actuator端点的BurpSuite被动扫描插件。
Kill processes protected by antivirus during offensive activities.
A lsass dump tool using MiniDumpWriteDump & syscall(NtOpenProcess) technique. only tested on windows 11 with defender enabled:-)