chriskaliX/AD-Pentest-Notes external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

chriskaliX/AD-Pentest-Notes

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/chriskaliX/AD-Pentest-Notes)

Close

chriskaliX / AD-Pentest-NotesView on GitHubMore

• External links
• Readme badge

用于记录内网渗透(域渗透)学习 :-)

☆1,236Nov 9, 2020Updated 5 years ago

Alternatives and similar repositories for AD-Pentest-Notes

Users that are interested in AD-Pentest-Notes are comparing it to the libraries listed below

• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,522Jul 17, 2021Updated 4 years ago
• Maskhe / javasec

  View on GitHub
  自己学习java安全的一些总结，主要是安全审计相关
  ☆1,695Jan 5, 2022Updated 4 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• uknowsec / Active-Directory-Pentest-Notes

  View on GitHub
  个人域渗透学习笔记
  ☆1,801Feb 7, 2020Updated 6 years ago
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,467Apr 25, 2024Updated last year
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,012May 21, 2024Updated last year
• JDArmy / DCSec

  View on GitHub
  域控安全one for all
  ☆736Sep 9, 2024Updated last year
• ybdt / post-hub

  View on GitHub
  Lateral movement
  ☆943Updated this week
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,034Jan 3, 2025Updated last year
• bitterzzZZ / MemoryShellLearn

  View on GitHub
  分享几个直接可用的内存马，记录一下学习过程中看过的文章
  ☆975Mar 23, 2022Updated 3 years ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,825Oct 20, 2023Updated 2 years ago
• xiaoy-sec / Pentest_Note

  View on GitHub
  渗透测试常规操作记录
  ☆4,045May 22, 2023Updated 2 years ago
• 0range-x / Domain-penetration_one-stop

  View on GitHub
  域渗透一条龙
  ☆738Feb 16, 2022Updated 4 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,016Oct 15, 2020Updated 5 years ago
• QAX-A-Team / sharpwmi

  View on GitHub
  sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
  ☆716Aug 3, 2021Updated 4 years ago
• DeEpinGh0st / Erebus

  View on GitHub
  CobaltStrike后渗透测试插件
  ☆1,554Oct 28, 2021Updated 4 years ago
• shmilylty / netspy

  View on GitHub
  netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
  ☆2,203Jul 25, 2023Updated 2 years ago
• SkewwG / domainTools

  View on GitHub
  内网域渗透小工具
  ☆734Apr 20, 2021Updated 4 years ago
• Airboi / bypass-av-note

  View on GitHub
  免杀技术大杂烩---乱拳也打不死老师傅
  ☆1,094Mar 29, 2021Updated 4 years ago
• phith0n / JavaThings

  View on GitHub
  Share Things Related to Java - Java安全漫谈笔记相关内容
  ☆1,991Apr 9, 2025Updated 10 months ago
• veo / wsMemShell

  View on GitHub
  WebSocket 内存马/Webshell，一种新型内存马/WebShell技术
  ☆1,488Apr 10, 2023Updated 2 years ago
• lintstar / LSTAR

  View on GitHub
  LSTAR - CobaltStrike 综合后渗透插件
  ☆1,263Jan 30, 2022Updated 4 years ago
• uknowsec / SharpDecryptPwd

  View on GitHub
  对密码已保存在 Windwos 系统上的部分程序进行解析,包括：Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品（Xshell,Xftp)。源码：https://github.com/RowTeam/SharpDecrypt…
  ☆1,260Mar 16, 2022Updated 3 years ago
• lengjibo / RedTeamTools

  View on GitHub
  记录自己编写、修改的部分工具
  ☆1,461Oct 19, 2025Updated 4 months ago
• c0ny1 / chunked-coding-converter

  View on GitHub
  Burp suite 分块传输辅助插件
  ☆2,023Feb 23, 2022Updated 4 years ago
• bit4woo / domain_hunter_pro

  View on GitHub
  domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
  ☆2,116Jan 23, 2026Updated last month
• HackJava / HackJava

  View on GitHub
  《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
  ☆2,872Aug 4, 2023Updated 2 years ago
• dr0op / CrossNet-Beta

  View on GitHub
  红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。
  ☆366Jun 19, 2024Updated last year
• uknowsec / SharpToolsAggressor

  View on GitHub
  内网渗透中常用的c#程序整合成cs脚本，直接内存加载。持续更新~
  ☆498Feb 13, 2020Updated 6 years ago
• Daybr4ak / C2ReverseProxy

  View on GitHub
  一款可以在不出网的环境下进行反向代理及cs上线的工具
  ☆491Apr 26, 2023Updated 2 years ago
• FunnyWolf / pystinger

  View on GitHub
  Bypass firewall for traffic forwarding using webshell
  ☆1,430Sep 29, 2021Updated 4 years ago
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks

  View on GitHub
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆754Apr 14, 2021Updated 4 years ago
• inbug-team / InScan

  View on GitHub
  边界打点后的自动化渗透工具
  ☆1,891Jul 19, 2021Updated 4 years ago
• threedr3am / learnjavabug

  View on GitHub
  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
  ☆2,689Mar 14, 2024Updated last year
• Adminisme / ServerScan

  View on GitHub
  ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
  ☆1,634Jun 16, 2024Updated last year
• QAX-A-Team / BrowserGhost

  View on GitHub
  这是一个抓取浏览器密码的工具，后续会添加更多功能
  ☆1,455May 21, 2022Updated 3 years ago
• SummerSec / JavaLearnVulnerability

  View on GitHub
  Java漏洞学习笔记 Deserialization Vulnerability
  ☆945Jun 14, 2023Updated 2 years ago
• wyzxxz / heapdump_tool

  View on GitHub
  heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等
  ☆1,434May 21, 2024Updated last year
• xiecat / goblin

  View on GitHub
  一款适用于红蓝对抗中的仿真钓鱼系统
  ☆1,535May 30, 2023Updated 2 years ago