红队|域渗透重要漏洞汇总(持续更新)
☆290Dec 23, 2022Updated 3 years ago
Alternatives and similar repositories for AD_Pentest
Users that are interested in AD_Pentest are comparing it to the libraries listed below
Sorting:
- rmi打内存马工具,适用于目标用不了ldap的情况☆254Jul 12, 2023Updated 2 years ago
- 域控安全one for all☆736Sep 9, 2024Updated last year
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,467Apr 25, 2024Updated last year
- Erfrp-frp二开-免杀与隐藏☆633Dec 4, 2022Updated 3 years ago
- 各种数据库的利用姿势☆1,034Jan 3, 2025Updated last year
- 域信息收集工具☆412Sep 16, 2022Updated 3 years ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆545Mar 6, 2025Updated 11 months ago
- JNDI在java高版本的利用工具,FUZZ利用链☆597Oct 8, 2022Updated 3 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆770Jan 26, 2022Updated 4 years ago
- 域内自动化信息搜集利用工具☆468Oct 24, 2023Updated 2 years ago
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆1,050Oct 7, 2022Updated 3 years ago
- Mssql利用工具☆276Aug 7, 2023Updated 2 years ago
- 利用oss实现http转发/cobalt strike上线☆371Nov 26, 2022Updated 3 years ago
- LSTAR - CobaltStrike 综合后渗透插件☆1,262Jan 30, 2022Updated 4 years ago
- Fastjson姿势技巧集合☆1,825Oct 20, 2023Updated 2 years ago
- 基于frp(0.44.0)二次开发,删除不必要功能,加密配置文件,修改流量以及文件特征☆314Aug 9, 2022Updated 3 years ago
- 收集内存马打入方式☆506May 20, 2022Updated 3 years ago
- dump lsass进程工具☆561Jul 20, 2023Updated 2 years ago
- SharpHostInfo是一款快速探测内网主机信息工具(深信服深蓝实验室天威战队强力驱动)☆627Dec 15, 2022Updated 3 years ago
- 内存加载shellcode绕过waf☆209Jul 25, 2022Updated 3 years ago
- 域渗透一条龙☆738Feb 16, 2022Updated 4 years ago
- WeblogicTool,GUI漏洞利用工具,支持漏洞检测、命令执行、内存马注入、密码解密等(深�信服深蓝实验室天威战队强力驱动)☆1,773Nov 1, 2023Updated 2 years ago
- 代码审计知识点整理-Java☆529Jun 15, 2020Updated 5 years ago
- 红队常用命令速查☆1,014Feb 7, 2026Updated 3 weeks ago
- 一款支持自定义的 Java 回显载荷生成工具|A customizable Java echo payload generation tool.☆461Jan 12, 2025Updated last year
- 一款高性能 HTTP 内存代理 | 哥斯拉插件 | readteam | 红队 | 内存马 | Suo5 | Godzilla | 正向代理☆288Aug 8, 2023Updated 2 years ago
- 创建隐藏计划任务,权限维持,Bypass AV☆558Sep 1, 2021Updated 4 years ago
- 【两万字原创】零基础学fastjson漏洞(提高篇),公众号:追梦信安☆211Dec 7, 2023Updated 2 years ago
- 红蓝对抗:钓鱼演练资源汇总&备忘录☆1,158Nov 6, 2024Updated last year
- 分享几个直接可用的内存马,记录一下学习过程中看过的文章☆975Mar 23, 2022Updated 3 years ago
- Spring漏洞综合利用工具☆675Jul 5, 2023Updated 2 years ago
- 一款支持自定义的 Java 内存马生成工具|A customizable Java in-memory webshell generation tool.☆2,151Aug 21, 2025Updated 6 months ago
- OA综合利用工具,集合将近20款OA漏洞批量扫描☆1,340Oct 28, 2023Updated 2 years ago
- 基于 OPSEC 的 CobaltStrike 后渗透自动化链☆451Mar 11, 2024Updated last year
- SpringScan 漏洞检测 Burp插件☆605Nov 14, 2023Updated 2 years ago
- 获取服务器或域控登录日志☆276Sep 8, 2023Updated 2 years ago
- 集权设施扫描器☆445Nov 23, 2023Updated 2 years ago
- Exchange 服务器安全性的辅助测试工具☆332Jul 21, 2023Updated 2 years ago
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆779Feb 13, 2025Updated last year