自己收集和编制的红队面试题,不定期更新
☆156Jul 21, 2025Updated 8 months ago
Alternatives and similar repositories for RedTeamInterview
Users that are interested in RedTeamInterview are comparing it to the libraries listed below
Sorting:
- Note driven hacking weaponized vscode project guide. 笔记驱动渗透测试——武器化 vscode 项目指南☆37Jul 18, 2025Updated 8 months ago
- 在xxe中使用smb外带多行内容☆105Nov 9, 2025Updated 4 months ago
- 基于 OPSEC 的 CobaltStrike 后渗透自动化链☆451Mar 11, 2024Updated 2 years ago
- 用于快速启动tabby 分析漏洞或者gadget的环境☆94Jul 14, 2025Updated 8 months ago
- 一款专注于 Java 主流 Web 中间件的内存马快速生成工具,致力于简化安全研究人员和红队成员的工作流程,提升攻防效率☆1,355Mar 4, 2026Updated 2 weeks ago
- IDEA代码审计辅助插件(深信服深蓝实验室天威战队强力驱动)☆583Mar 10, 2025Updated last year
- Nacos Derby命令执行漏洞利用脚本☆150Apr 7, 2025Updated 11 months ago
- 支持Tomcat内存马查杀的JSP脚本☆66Jun 16, 2025Updated 9 months ago
- A simple MobaXterm password extraction tool.☆96Aug 8, 2024Updated last year
- jeecgBoot漏洞利用工具☆47Feb 1, 2025Updated last year
- daydayExp的漏洞POC仓库,慢慢更新...☆371Nov 4, 2024Updated last year
- 【两万字原创】零基础学fastjson漏洞(提高篇),公众号:追梦信安☆211Dec 7, 2023Updated 2 years ago
- 一个记录本机IP的小程序☆35Jan 8, 2025Updated last year
- 一款轻量级匹配Sink点的代码审计扫描器,为了帮助红队过程中快速代码审计的小工具☆409Oct 6, 2024Updated last year
- 集权利用工具☆165Feb 28, 2025Updated last year
- "闪紫"(英文名shiningZ)社工字典生成工具,支持ABC自定义排列组合、ABC列字典AI扩展、AI提示词联想字典、自定义AI提示、字典去重、结果导出等☆31Oct 27, 2025Updated 4 months ago
- JavaSecLab is a comprehensive Java vulnerability platform| JavaSecLab是一款综合型Java漏洞平台,提供相关漏洞缺陷代码、修复代码、漏洞场景、审计SINK点、安全编码规范,覆盖多种漏洞场景,友好用户交互U…☆822Mar 23, 2025Updated 11 months ago
- A powerful JNDI injection exploitation framework that supports RMI, LDAP and LDAPS protocols, including various bypass methods for high-v…☆573Feb 4, 2026Updated last month
- burp手工检测fastjson辅助☆87Mar 4, 2024Updated 2 years ago
- 可能是windows最小的wget (862字节)☆71Dec 13, 2024Updated last year
- 帆软bi反序列化漏洞利用工具☆190Mar 23, 2024Updated last year
- 一些总结出来的gadget的flow,后续合适和加入新的flow☆68Dec 6, 2025Updated 3 months ago
- Exchange 信息收集工具☆54Jan 4, 2025Updated last year
- 辅助甲方安全人员巡检网站资产,发现并分析API安全问题☆520Jan 20, 2025Updated last year
- ASP.net ViewState密钥被动扫描爆破BurpSuite插件☆220Nov 14, 2025Updated 4 months ago
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项��目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆572Feb 7, 2026Updated last month
- Nacos 综合漏洞利用工具☆600Nov 3, 2025Updated 4 months ago
- CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.☆1,436Updated this week
- 轻量级的 Active Directory 枚举工具,用于收集域环境中的信息☆89Mar 22, 2025Updated 11 months ago
- PHP文件上传50+绕过手法全景解析☆17Mar 16, 2025Updated last year
- MDUT-Extend(扩展版本)☆798Dec 19, 2024Updated last year
- 记录一些代码审计过的源码☆182Feb 26, 2025Updated last year
- LC(List Cloud)是一个多云攻击面资产梳理工具☆637Oct 6, 2024Updated last year
- ConvertiX, 一款将常用网络空间测绘平台语句之间互相转换的工具。☆54Aug 25, 2025Updated 6 months ago
- 综合后渗透方面的杂烩☆575Mar 1, 2026Updated 2 weeks ago
- 这个人很懒什么也不想说☆29Jul 11, 2025Updated 8 months ago
- 用友漏洞综合利用工具☆263Nov 9, 2024Updated last year
- 针对Navicat的后渗透利用框架☆330Mar 21, 2025Updated last year
- 云原生安全资料库☆171Aug 17, 2025Updated 7 months ago