Alternatives and similar repositories for Pentesting-Active-Directory-CN

Users that are interested in Pentesting-Active-Directory-CN are comparing it to the libraries listed below

• JDArmy / DCSec

  View on GitHub
  域控安全one for all
  ☆736Sep 9, 2024Updated last year
• 0range-x / Domain-penetration_one-stop

  View on GitHub
  域渗透一条龙
  ☆738Feb 16, 2022Updated 4 years ago
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,034Jan 3, 2025Updated last year
• r0eXpeR / fingerprint

  View on GitHub
  各种工具指纹收集分享
  ☆529Nov 3, 2021Updated 4 years ago
• hayasec / 360SafeBrowsergetpass

  View on GitHub
  这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
  ☆638Apr 4, 2021Updated 4 years ago
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks

  View on GitHub
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆753Apr 14, 2021Updated 4 years ago
• bitterzzZZ / MemoryShellLearn

  View on GitHub
  分享几个直接可用的内存马，记录一下学习过程中看过的文章
  ☆975Mar 23, 2022Updated 3 years ago
• depycode / fastjson-c3p0

  View on GitHub
  fastjson不出网利用、c3p0
  ☆255Jul 30, 2021Updated 4 years ago
• r0eXpeR / supplier

  View on GitHub
  主流供应商的一些攻击性漏洞汇总
  ☆807Nov 8, 2021Updated 4 years ago
• exp1orer / JNDI-Inject-Exploit

  View on GitHub
  解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
  ☆770Jan 26, 2022Updated 4 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,015Oct 15, 2020Updated 5 years ago
• Airboi / bypass-av-note

  View on GitHub
  免杀技术大杂烩---乱拳也打不死老师傅
  ☆1,095Mar 29, 2021Updated 4 years ago
• 5wimming / gadgetinspector

  View on GitHub
  利用链、漏洞检测工具
  ☆373Jul 31, 2024Updated last year
• chriskaliX / AD-Pentest-Notes

  View on GitHub
  用于记录内网渗透(域渗透)学习 :-)
  ☆1,235Nov 9, 2020Updated 5 years ago
• Bywalks / K8s-Mind-Map

  View on GitHub
  K8S安全攻防思维导图 | Docker安全攻防思维导图
  ☆417Jun 22, 2022Updated 3 years ago
• fnmsd / MySQL_Fake_Server

  View on GitHub
  MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
  ☆1,359Nov 18, 2021Updated 4 years ago
• NyDubh3 / AnonymousSMBServer

  View on GitHub
  一个能快速开启和关闭匿名SMB共享的红队脚本
  ☆174Apr 6, 2022Updated 3 years ago
• safe6Sec / CodeqlNote

  View on GitHub
  Codeql学习笔记
  ☆900Apr 25, 2022Updated 3 years ago
• SkewwG / domainTools

  View on GitHub
  内网域渗透小工具
  ☆734Apr 20, 2021Updated 4 years ago
• shmilylty / netspy

  View on GitHub
  netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
  ☆2,199Jul 25, 2023Updated 2 years ago
• UzJu / Cloud-Bucket-Leak-Detection-Tools

  View on GitHub
  六大云存储，泄露利用检测工具
  ☆1,238Mar 28, 2025Updated 10 months ago
• JDArmy / SharpXDecrypt

  View on GitHub
  Xshell全版本密码恢复工具
  ☆927Jun 8, 2023Updated 2 years ago
• woodpecker-framework / woodpecker-framework-release

  View on GitHub
  高危漏洞精准检测与深度利用框架
  ☆1,456Jan 8, 2023Updated 3 years ago
• haby0 / sec-note

  View on GitHub
  记录各语言、框架中危险的sink，个人代码审计、漏洞研究使用。
  ☆117Dec 30, 2021Updated 4 years ago
• QAX-A-Team / BrowserGhost

  View on GitHub
  这是一个抓取浏览器密码的工具，后续会添加更多功能
  ☆1,454May 21, 2022Updated 3 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• AlphabugX / csOnvps

  View on GitHub
  CobaltStrike4.4 一键部署脚本 随机生成密码、key、端口号、证书等，解决cs4.x无法运行在Linux上报错问题 灰常银杏化设计
  ☆286Mar 19, 2022Updated 3 years ago
• BeichenDream / InjectJDBC

  View on GitHub
  注入JVM进程 动态获取目标进程连接的数据库
  ☆342Mar 6, 2022Updated 3 years ago
• r35tart / RedisWriteFile

  View on GitHub
  通过 Redis 主从写出无损文件
  ☆719May 25, 2020Updated 5 years ago
• BeichenDream / Chunk-Proxy

  View on GitHub
  ☆294May 7, 2022Updated 3 years ago
• keven1z / weblogic_memshell

  View on GitHub
  适用于weblogic和Tomcat的无文件的内存马(memshell)
  ☆269Mar 4, 2022Updated 3 years ago
• safe6Sec / command

  View on GitHub
  红队常用命令速查
  ☆1,014Feb 7, 2026Updated last week
• wyzxxz / heapdump_tool

  View on GitHub
  heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等
  ☆1,433May 21, 2024Updated last year
• whwlsfb / JDumpSpider

  View on GitHub
  HeapDump敏感信息提取工具
  ☆1,629Dec 15, 2025Updated 2 months ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,824Oct 20, 2023Updated 2 years ago
• LandGrey / ClassHound

  View on GitHub
  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
  ☆711May 10, 2021Updated 4 years ago
• bit4woo / domain_hunter_pro

  View on GitHub
  domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
  ☆2,116Jan 23, 2026Updated 3 weeks ago
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,521Jul 17, 2021Updated 4 years ago
• wyzxxz / aksk_tool

  View on GitHub
  AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
  ☆778Feb 13, 2025Updated last year