ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup…

365-Stealer is a phishing simualtion tool written in python3. It can be used to execute Illicit Cons…

Rogue authentication server and LLMNR/NBT-NS/mDNS poisoner for Windows networks. Captures NTLM chall…

Automated NoSQL injection and database exploitation tool. Targets MongoDB, CouchDB, Redis, and Cassa…

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and the…

Uses graph theory to reveal hidden and often unintended relationships within Active Directory enviro…