ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup…

Framework and collection of PowerShell scripts and payloads for offensive security and post-exploita…

Full-featured WinRM shell for hacking and penetration testing. Supports pass-the-hash, file upload/d…

Rogue authentication server and LLMNR/NBT-NS/mDNS poisoner for Windows networks. Captures NTLM chall…

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.…

Automated NoSQL injection and database exploitation tool. Targets MongoDB, CouchDB, Redis, and Cassa…