jonathanzhou348 Goto Github PK
Type: User
Bio: 梦想着成为健身达人与安全大牛的小胖子
Location: China
Type: User
Bio: 梦想着成为健身达人与安全大牛的小胖子
Location: China
Some scripts useful for red team activities
Red Teaming Tactics and Techniques
The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.
Salsa Tools - ShellReverse TCP/UDP/ICMP/DNS/SSL/BINDTCP/Shellcode/SILENTTRINITY and AV bypass, AMSI patched
Scanner Docker
《白帽子安全开发实战》配套代码
SecistSploit
个人安全开发代码归档:包括但不限于渗透测试,资产收集,大规模漏洞扫描器,网络安全相关资料文档
Security Paper
Shikata ga nai (仕方がない) encoder ported into go with several improvements
Sharingan(写轮眼)是一个基于golang的流量录制回放工具,适合项目重构、回归测试等。
A method of bypassing EDR's active projection DLL's by preventing entry point exection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
对密码已保存在 Windwos 系统上的部分程序进行解析,包括:Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品(Xshell,Xftp)。
Asynchronous Password Spraying Tool in C# for Windows Environments
在内网渗透过程中,对可以出网的机器是十分渴望的。在收集大量弱口令的情况下,一个一个去测试能不能出网太麻烦了。所以就有了这个工具,可配合如wmiexec、psexec等横向工具进行批量检测,该工具可以在dnslog中回显内网ip地址和计算机名,可实现内网中的快速定位可出网机器。
A simple C implementation to decoded your shellcode and writes it directly to memory
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
Sourcetrail - free and open-source interactive source explorer
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 checklist
Code developed to steal certain browser config files (history, preferences, etc)
A fast SSH mass-scanner, login cracker and banner grabber tool using the python-masscan and shodan module.
SSHPry v2 - Spy & Control os SSH Connected client's TTY
毒药笔记
Azure Red Team tool for graphing Azure and Azure Active Directory objects
👻Stowaway -- Multi-hop Proxy Tool for pentesters
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.