XiebroC2. 渗透测试C2、支持Lua插件扩展、域前置/CDN上线、自定义profile、前置sRDI、文件管理、进程管理、内存加载、截图、反向代理、分组管理
1.4kSharpScan. 内网资产收集、探测主机存活、端口扫描、域控定位、文件搜索、各种服务爆破(SSH、SMB、MsSQL等)、Socks代理,一键自动化+无文件落地扫描
478GlllPowerloader. 绕过AV/EDR的代码例子(Code example to bypass AV/EDR)
450SharpThief. 一键提取exe的图标、嵌入图标、资源信息、版本信息、修改时间、数字签名,降低程序熵值
434Webshell-loader. ASPX内存执行shellcode,绕过Windows Defender(AV/EDR)
126Xiebro-Plugins. xiebroC2 plugin
58Bypass-AMSI. PowerShell
56CsharpEncryptionDecryptor. pe reflection tool, which confuses invoke and entry
41ShellCodeTemper. 制作 shellcode 的模板
32Invoke-PSImage. PowerShell
28stub-Repositores. Offensive Code
21Check-SandBox. Check VM/SandBox
17Nopowershell. Call the CLR interface from memory to load powershell, process-less powershell
15Invoke-SharpOffensive. PowerShell
15All-Defense-Tool. 本项目集成了全网优秀的攻防工具项目,包含自动化利用,子域名、敏感目录、端口等扫描,各大中间件,cms漏洞利用工具以及应急响应等资料。
14GllNotes. Batchfile
13Nim-Lang-Bypass. NimBypassAntivirus
6Pentest_Note. 渗透测试常规操作记录
6process-inject. 在Windows环境下的进程注入方法:远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入
5AntiAntiVirusNotes. 学习免杀的笔记
5csplugin. 自己开的cs插件
4Rat-winos4.0-gh0st. 免杀远控木马源码整理开源(银狐 winos 大灰狼 gh0st) Rat
4SharpToolsAggressor. 内网渗透中常用的c#程序整合成cs脚本,直接内存加载。持续更新~
3LOLBAS222. APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )
3nim_shellloader. nim,免杀,红队,shellcode,bypass
3Anti-Sandbox. Snippets stolen from github.com/Arvanaghi/CheckPlease
3PengCode. EXE转ShellCode工具
2HardHatC2. A c# Command & Control framework
2no-defender. no-defender re-up all credit goes to https://github.com/es3n1n/no-defender
2Awesome-CobaltStrike. cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources
2Active-Directory-Pentest-Notes. 个人域渗透学习笔记
2geacon_pro. 重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.
1CcRemote. 这是一个基于gh0st远程控制的项目,使自己更深入了解远控的原理,采用VS2017,默认分支hijack还在修改不能执行,master分支的项目可以正常的运行的,你可以切换到该分支查看可以执行的代码
1OffensiveRust. Rust Weaponization for Red Team Engagements.
1CobaltStrike_OpenBeacon. Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for security professionals and enthusiasts.
1ShellcodeTemplateA. An easily modifiable shellcode template for Windows x64/x86
1AD-Pentest-Notes. 用于记录内网渗透(域渗透)学习 :-)
1OffensiveVBA. This repo covers some code execution and AV Evasion methods for Macros in Office documents
1Erfrp. Erfrp-frp二开-免杀与隐藏
1SafeLine. 一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术,作为反向代理接入,保护你的网站不受黑客攻击。 A free WAF that is sufficiently simple, effective, and powerful. Utilizing industry-leading semantic engine detection technology, it operates as a reverse proxy to protect your website from hacker attacks.
1NBitcoin. Comprehensive Bitcoin library for the .NET framework.
1