JKme/cube

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/JKme/cube)

JKme / cube

内网渗透测试工具，弱密码爆破、信息收集和漏洞扫描

☆610

Alternatives and similar repositories for cube

Users that are interested in cube are comparing it to the libraries listed below

Sorting:

i11us0ry / goon
View on GitHub
goon,集合了fscan和kscan等优秀工具功能的扫描爆破工具。功能包含：ip探活、port扫描、web指纹扫描、title扫描、压缩文件扫描、fofa获取、ms17010、mssql、mysql、postgres、redis、ssh、smb、rdp、telnet、to…
☆812Aug 5, 2024Updated last year
ybdt / post-hub
View on GitHub
Lateral movement
☆943Jan 11, 2026Updated last month
sairson / Yasso
View on GitHub
强大的内网渗透辅助工具集-让Yasso像风一样支持rdp，ssh，redis，postgres，mongodb，mssql，mysql，winrm等服务爆破，快速的端口扫描，强大的web指纹识别，各种内置服务的一键利用（包括ssh完全交互式登陆，mssql提权，redis…
☆1,595Jul 27, 2022Updated 3 years ago
shmilylty / netspy
View on GitHub
netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
☆2,200Jul 25, 2023Updated 2 years ago
SkewwG / domainTools
View on GitHub
内网域渗透小工具
☆734Apr 20, 2021Updated 4 years ago
Hel10-Web / Databasetools
View on GitHub
一款用Go语言编写的数据库自动化提权工具，支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
☆859Aug 30, 2023Updated 2 years ago
veo / vscan
View on GitHub
开源、轻量、快速、跨平台的网站漏洞扫描工具，帮助您快速检测网站安全隐患。功能端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)
☆1,625Oct 10, 2023Updated 2 years ago
a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,050Oct 7, 2022Updated 3 years ago
yanghaoi / CobaltStrike_CNA
View on GitHub
使用多种WinAPI进行权限维持的CobaltStrike脚本，包含API设置系统服务，设置计划任务，管理用户等。
☆556Jan 18, 2022Updated 4 years ago
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,467Apr 25, 2024Updated last year
chainreactors / gogo
View on GitHub
面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams
☆1,999Feb 3, 2026Updated 3 weeks ago
xfiftyone / STS2G
View on GitHub
Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang
☆572Jan 10, 2022Updated 4 years ago
UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,241Mar 28, 2025Updated 11 months ago
Adminisme / ServerScan
View on GitHub
ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
☆1,635Jun 16, 2024Updated last year
lintstar / LSTAR
View on GitHub
LSTAR - CobaltStrike 综合后渗透插件
☆1,262Jan 30, 2022Updated 4 years ago
Tas9er / ByPassBehinder4J
View on GitHub
冰蝎Java WebShell自动化免杀生成
☆783Mar 15, 2022Updated 3 years ago
safe6Sec / PentestDB
View on GitHub
各种数据库的利用姿势
☆1,034Jan 3, 2025Updated last year
Mob2003 / rakshasa
View on GitHub
基于go编写的跨平台、稳定、隐秘的多级代理内网穿透工具
☆1,059Apr 23, 2023Updated 2 years ago
exp1orer / JNDI-Inject-Exploit
View on GitHub
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
☆770Jan 26, 2022Updated 4 years ago
JDArmy / RPCSCAN
View on GitHub
RPC远程主机信息匿名扫描工具
☆317Sep 30, 2022Updated 3 years ago
JDArmy / DCSec
View on GitHub
域控安全one for all
☆736Sep 9, 2024Updated last year
achuna33 / MYExploit
View on GitHub
OAExploit一款基于产品的一键扫描工具。
☆1,482Sep 20, 2022Updated 3 years ago
Rvn0xsy / PassDecode-jar
View on GitHub
帆软/致远密码解密工具
☆360Jul 29, 2021Updated 4 years ago
safe6Sec / GolangBypassAV
View on GitHub
研究利用golang各种姿势bypassAV
☆815Apr 11, 2022Updated 3 years ago
evilashz / SharpADUserIP
View on GitHub
提取DC日志，快速获取域用户对应IP地址
☆308Mar 21, 2022Updated 3 years ago
z1un / Z1-AggressorScripts
View on GitHub
适用于Cobalt Strike的插件
☆562May 30, 2021Updated 4 years ago
Bl0omZ / JNDIEXP
View on GitHub
JNDI在java高版本的利用工具,FUZZ利用链
☆597Oct 8, 2022Updated 3 years ago
awake1t / PortBrute
View on GitHub
一款跨平台小巧的端口爆破工具，支持爆破FTP/SSH/SMB/MSSQL/MYSQL/POSTGRESQL/MONGOD / A cross-platform compact port blasting tool that supports blasting FTP/SSH…
☆1,105Oct 9, 2021Updated 4 years ago
wyzxxz / aksk_tool
View on GitHub
AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
☆779Feb 13, 2025Updated last year
lcvvvv / gonmap
View on GitHub
gonmap是一个go语言的nmap端口扫描库，使用纯go实现nmap的扫描逻辑，而非调用nmap来进行扫描。
☆345Nov 4, 2022Updated 3 years ago
zilong3033 / fastjsonScan
View on GitHub
fastjson漏洞burp插件，检测fastjson<1.2.68基于dnslog，fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。
☆124May 14, 2021Updated 4 years ago
crisprss / BypassUserAdd
View on GitHub
通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化
☆344Apr 10, 2022Updated 3 years ago
boy-hack / go-strip
View on GitHub
清除Go编译时自带的信息
☆855Jul 20, 2022Updated 3 years ago
czz1233 / GBByPass
View on GitHub
冰蝎哥斯拉 WebShell bypass
☆762Jan 15, 2026Updated last month
sp4zcmd / WeblogicExploit-GUI
View on GitHub
Weblogic漏洞利用图形化工具支持注入内存马、一键上传webshell、命令执行
☆776Apr 20, 2022Updated 3 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,012May 21, 2024Updated last year
Heart-Sky / ListRDPConnections
View on GitHub
C# 读取本机对外RDP连接记录和其他主机对该主机的连接记录，从而在内网渗透中获取更多可通内网网段信息以及定位运维管理人员主机
☆431Jan 28, 2021Updated 5 years ago
u21h2 / nacs
View on GitHub
事件驱动的渗透测试扫描器 Event-driven pentest scanner
☆698Jul 7, 2024Updated last year
i11us0ry / winlog
View on GitHub
一款基于go的windows信息收集工具，主要收集目标机器rdp端口、mstsc远程连接记录、mstsc密码和安全事件中4624、4625登录事件记录
☆289Jul 18, 2022Updated 3 years ago