Example Usage
% docker run -it --rm ghcr.io/kpcyrd/sh4d0wup:edge -h Usage: sh4d0wup [OPTIONS] <COMMAND> Commands: bait Start a malicious update server front Bind a http/https server but forward everything unmodified infect High level tampering, inject additional commands into a package tamper Low level tampering, patch a package database to add malicious packages, cause updates or influence dependency resolution keygen Generate signing keys with the given parameters sign Use signing keys to generate signatures hsm Interact with hardware signing keys build Compile an attack based on a plot check Check if the plot can still execute correctly against the configured image req Emulate a http request to test routing and selectors completions Generate shell completions help Print this message or the help of the given subcommand(s) Options: -v, --verbose... Increase logging output (can be used multiple times) -q, --quiet... Reduce logging output (can be used multiple times) -h, --help Print help information -V, --version Print version information
See also
Unicorn
Open Source
Simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Works…
ExploitDB / SearchSploit
Open Source
Kali
Archive of public exploits and vulnerable software maintained by Offensive Security. SearchSploit pr…
BlackFriday-GPTs-Prompts
Open Source
List of free GPTs that doesn't require plus subscription…
BloodHound
Open Source
Kali
Uses graph theory to reveal hidden and often unintended relationships within Active Directory enviro…
GDB with pwndbg
Open Source
Kali
GDB (GNU Debugger) enhanced with pwndbg plugin for exploit development and reverse engineering. Adds…
Ladon
Open Source
Ladon大型内网渗透扫描器,PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetS…