phuong39 Goto Github PK

log4j-fuzz-head-poc

批量检测log4j漏洞，主要还是批量fuzzz 头

log4j-sniffer

A tool that scans archives to check for vulnerable log4j versions

log4j2-cve-2021-44228

Remote Code Injection In Log4j

log4j2burpscanner

CVE-2021-44228，log4j2 burp插件 Java版本，可自定义ceye.io，也可以自定义内网的dnslog平台及请求接口定位内网漏洞机器(log4j2 RCE Burp Suite Passive Scanner，can customize the ceye.io api or other apis，including internal networks)

log4j2scan

Log4j2 RCE Passive Scanner plugin for BurpSuite

log4j2scan-1

log4j2 检测

log4jscanner

login-stealer

what the name says (made for "educational" purposes)

logmepwn

A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.

lolbits

C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + Dinvoke for EDR user-mode hooking evasion.

lsassy

Extract credentials from lsass remotely

lstar

LSTAR - CobaltStrike 综合后渗透插件

lumen

A private Lumina server for IDA Pro

luwu

红队基础设施自动化部署工具

macos_vba_macro

Example VBA Macro for MacOS Mojave

macrootkit

A RootKit for macOS that can perform kernel read/write, hook kernel and userspace functions, set custom conditional breakpoints, etc

mailman-killer

Idea from @juzeon

mailsniper

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

malicious-html-page-

POC of using html and scripts to make a malicious webpage to demonstrate website based attacks.

malicious-pdf

Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator

malleable-c2

Cobalt Strike Malleable C2 Design and Reference Guide

malleable-c2-profiles

Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.

malleablec2-profiles

A collection of Cobalt Strike Malleable C2 profiles

malsccm

malware-1

Malware source code samples leaked online uploaded to GitHub for those who want to analyze the code.

malware_showcase

Understand the nature of malicious software with practical examples in Python.

malwaresourcecode

Collection of malware source code for a variety of platforms in an array of different programming languages.

mangle

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

manspider

Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!

maozedonganthology

***选集