xiaoZ-hc/redtool

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xiaoZ-hc/redtool)

xiaoZ-hc / redtool

日常积累的一些红队工具及自己写的脚本，更偏向于一些diy的好用的工具，并不是一些比较常用的msf/awvs/xray这种

☆1,417

Alternatives and similar repositories for redtool

Users that are interested in redtool are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,519Jul 17, 2021Updated 4 years ago
inbug-team / InScan
View on GitHub
边界打点后的自动化渗透工具
☆1,893Jul 19, 2021Updated 4 years ago
Ershu1 / 2021_Hvv
View on GitHub
2021 hw
☆1,205Nov 14, 2023Updated 2 years ago
chriskaliX / AD-Pentest-Notes
View on GitHub
用于记录内网渗透(域渗透)学习 :-)
☆1,240Nov 9, 2020Updated 5 years ago
dr0op / shiro-550-with-NoCC
View on GitHub
Shiro-550 不依赖CC链利用工具
☆450Jun 19, 2024Updated last year
Simple, predictable pricing with DigitalOcean hosting • Ad
Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
Ascotbe / Medusa
View on GitHub
Medusa是一个红队武器库平台，目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能，持续开发中
☆2,222Mar 3, 2024Updated 2 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,405Jan 18, 2022Updated 4 years ago
zhzyker / exphub
View on GitHub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、…
☆4,276Apr 4, 2021Updated 4 years ago
kelvinBen / AppInfoScanner
View on GitHub
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN…
☆3,518Dec 18, 2022Updated 3 years ago
Lucifer1993 / SatanSword
View on GitHub
红队综合渗透框架
☆1,178May 11, 2023Updated 2 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,015May 21, 2024Updated last year
bit4woo / domain_hunter_pro
View on GitHub
domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
☆2,118Mar 3, 2026Updated 3 weeks ago
xiaoy-sec / Pentest_Note
View on GitHub
渗透测试常规操作记录
☆4,057May 22, 2023Updated 2 years ago
dr0op / CrossNet-Beta
View on GitHub
红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。
☆366Jun 19, 2024Updated last year
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
EdgeSecurityTeam / EHole
View on GitHub
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
☆3,448Apr 2, 2024Updated last year
Adminisme / ServerScan
View on GitHub
ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
☆1,634Jun 16, 2024Updated last year
xiecat / goblin
View on GitHub
一款适用于红蓝对抗中的仿真钓鱼系统
☆1,537May 30, 2023Updated 2 years ago
CTF-MissFeng / GoScan
View on GitHub
GoScan是采用Golang语言编写的一款分布式综合资产管理系统，适合红队、SRC等使用
☆714May 6, 2021Updated 4 years ago
lengjibo / RedTeamTools
View on GitHub
记录自己编写、修改的部分工具
☆1,465Oct 19, 2025Updated 5 months ago
safe6Sec / PentestDB
View on GitHub
各种数据库的利用姿势
☆1,033Jan 3, 2025Updated last year
jweny / pocassist
View on GitHub
傻瓜式漏洞PoC测试框架
☆1,442Oct 30, 2023Updated 2 years ago
DeEpinGh0st / Erebus
View on GitHub
CobaltStrike后渗透测试插件
☆1,557Oct 28, 2021Updated 4 years ago
Airboi / bypass-av-note
View on GitHub
免杀技术大杂烩---乱拳也打不死老师傅
☆1,097Mar 29, 2021Updated 4 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
Echocipher / AUTO-EARN
View on GitHub
一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具
☆739Dec 8, 2022Updated 3 years ago
Daybr4ak / C2ReverseProxy
View on GitHub
一款可以在不出网的环境下进行反向代理及cs上线的工具
☆491Apr 26, 2023Updated 2 years ago
hudunkey / Red-Team-links
View on GitHub
2019年红队资源链接，资源不是本人整理出来，来自互联网，因为流传的少，特意在此做个备份，做个分享。
☆838Aug 24, 2019Updated 6 years ago
Mr-xn / Penetration_Testing_POC
View on GitHub
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell co…
☆7,287Updated this week
r0eXpeR / supplier
View on GitHub
主流供应商的一些攻击性漏洞汇总
☆808Nov 8, 2021Updated 4 years ago
UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,245Mar 28, 2025Updated last year
woodpecker-framework / woodpecker-framework-release
View on GitHub
高危漏洞精准检测与深度利用框架
☆1,459Jan 8, 2023Updated 3 years ago
uknowsec / Active-Directory-Pentest-Notes
View on GitHub
个人域渗透学习笔记
☆1,803Feb 7, 2020Updated 6 years ago
c0ny1 / passive-scan-client
View on GitHub
Burp被动扫描流量转发插件
☆1,459Jun 17, 2024Updated last year
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
threedr3am / learnjavabug
View on GitHub
Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
☆2,694Mar 14, 2024Updated 2 years ago
FunnyWolf / pystinger
View on GitHub
Bypass firewall for traffic forwarding using webshell
☆1,431Sep 29, 2021Updated 4 years ago
LandGrey / webshell-detect-bypass
View on GitHub
绕过专业工具检测的Webshell研究文章和免杀的Webshell
☆1,733Nov 15, 2020Updated 5 years ago
timwhitez / crawlergo_x_XRAY
View on GitHub
360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
☆1,183Nov 10, 2021Updated 4 years ago
c0ny1 / chunked-coding-converter
View on GitHub
Burp suite 分块传输辅助插件
☆2,029Feb 23, 2022Updated 4 years ago
safe6Sec / Fastjson
View on GitHub
Fastjson姿势技巧集合
☆1,833Oct 20, 2023Updated 2 years ago
1y0n / AV_Evasion_Tool
View on GitHub
掩日 - 免杀执行器生成工具
☆2,758Aug 18, 2025Updated 7 months ago