lintstar/LSTAR

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/lintstar/LSTAR)

lintstar / LSTAR

LSTAR - CobaltStrike 综合后渗透插件

☆1,262

Alternatives and similar repositories for LSTAR

Users that are interested in LSTAR are comparing it to the libraries listed below

Sorting:

Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,468Apr 25, 2024Updated last year
pandasec888 / taowu-cobalt_strike
View on GitHub
☆1,825Nov 24, 2025Updated 3 months ago
DeEpinGh0st / Erebus
View on GitHub
CobaltStrike后渗透测试插件
☆1,557Oct 28, 2021Updated 4 years ago
shmilylty / netspy
View on GitHub
netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
☆2,203Jul 25, 2023Updated 2 years ago
yanghaoi / CobaltStrike_CNA
View on GitHub
使用多种WinAPI进行权限维持的CobaltStrike脚本，包含API设置系统服务，设置计划任务，管理用户等。
☆554Jan 18, 2022Updated 4 years ago
lintstar / CS-AutoPostChain
View on GitHub
基于 OPSEC 的 CobaltStrike 后渗透自动化链
☆451Mar 11, 2024Updated 2 years ago
d3ckx1 / OLa
View on GitHub
☆658Aug 15, 2022Updated 3 years ago
achuna33 / MYExploit
View on GitHub
OAExploit一款基于产品的一键扫描工具。
☆1,481Sep 20, 2022Updated 3 years ago
SafeGroceryStore / MDUT
View on GitHub
MDUT - Multiple Database Utilization Tools
☆2,194Sep 22, 2023Updated 2 years ago
woodpecker-framework / woodpecker-framework-release
View on GitHub
高危漏洞精准检测与深度利用框架
☆1,458Jan 8, 2023Updated 3 years ago
gloxec / CrossC2
View on GitHub
generate CobaltStrike's cross-platform payload
☆2,547Nov 20, 2023Updated 2 years ago
UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,245Mar 28, 2025Updated 11 months ago
SummerSec / ShiroAttack2
View on GitHub
shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
☆2,391Apr 10, 2024Updated last year
Tas9er / ByPassBehinder4J
View on GitHub
冰蝎Java WebShell自动化免杀生成
☆783Mar 15, 2022Updated 4 years ago
safe6Sec / PentestDB
View on GitHub
各种数据库的利用姿势
☆1,033Jan 3, 2025Updated last year
czz1233 / GBByPass
View on GitHub
冰蝎哥斯拉 WebShell bypass
☆763Jan 15, 2026Updated 2 months ago
exp1orer / JNDI-Inject-Exploit
View on GitHub
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
☆772Jan 26, 2022Updated 4 years ago
1n7erface / Template
View on GitHub
Next generation RedTeam heuristic intranet scanning | 下一代RedTeam启发式内网扫描
☆1,115Sep 16, 2023Updated 2 years ago
JDArmy / DCSec
View on GitHub
域控安全one for all
☆736Sep 9, 2024Updated last year
safe6Sec / GolangBypassAV
View on GitHub
研究利用golang各种姿势bypassAV
☆816Apr 11, 2022Updated 3 years ago
zema1 / suo5
View on GitHub
高性能 HTTP 正向代理工具 | A high-performance http tunneling tool
☆2,683Feb 2, 2026Updated last month
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,014May 21, 2024Updated last year
wyzxxz / aksk_tool
View on GitHub
AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
☆779Feb 13, 2025Updated last year
wyzxxz / heapdump_tool
View on GitHub
heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等
☆1,434May 21, 2024Updated last year
pen4uin / java-memshell-generator
View on GitHub
一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
☆2,165Aug 21, 2025Updated 7 months ago
z1un / Z1-AggressorScripts
View on GitHub
适用于Cobalt Strike的插件
☆561May 30, 2021Updated 4 years ago
uknowsec / SharpSQLTools
View on GitHub
SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
☆964Aug 5, 2021Updated 4 years ago
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,776Nov 1, 2023Updated 2 years ago
veo / wsMemShell
View on GitHub
WebSocket 内存马/Webshell，一种新型内存马/WebShell技术
☆1,493Apr 10, 2023Updated 2 years ago
1y0n / AV_Evasion_Tool
View on GitHub
掩日 - 免杀执行器生成工具
☆2,755Aug 18, 2025Updated 7 months ago
pmiaowu / BurpFastJsonScan
View on GitHub
一款基于BurpSuite的被动式FastJson检测插件
☆1,237Oct 1, 2022Updated 3 years ago
safe6Sec / Fastjson
View on GitHub
Fastjson姿势技巧集合
☆1,833Oct 20, 2023Updated 2 years ago
cseroad / Webshell_Generate
View on GitHub
用于生成各类免杀webshell
☆1,290Jan 8, 2026Updated 2 months ago
bit4woo / domain_hunter_pro
View on GitHub
domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
☆2,118Mar 3, 2026Updated 2 weeks ago
a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,050Oct 7, 2022Updated 3 years ago
yuyan-sec / RedisEXP
View on GitHub
Redis 漏洞利用工具
☆937Jan 26, 2025Updated last year
zer0yu / Awesome-CobaltStrike
View on GitHub
List of Awesome CobaltStrike Resources
☆4,395Sep 20, 2023Updated 2 years ago
qwqdanchun / Pillager
View on GitHub
Pillager是一个适用于后渗透期间的信息收集工具
☆1,271Sep 7, 2024Updated last year
Tas9er / ByPassBehinder
View on GitHub
ByPassBehinder / 冰蝎WebShell免杀生成 / Code By:Tas9er
☆833May 28, 2022Updated 3 years ago