QAX-A-Team / Luwu
Licence: apache-2.0
红队基础设施自动化部署工具
Stars: ✭ 539
Programming Languages
python
139335 projects - #7 most used programming language
Projects that are alternatives of or similar to Luwu
Freepac
科学上网/翻墙梯子/自由上网/SS/SSR/V2Ray/Brook 搭建教程 免费机场、VPN工具
Stars: ✭ 4,515 (+737.66%)
Mutual labels: vps
Octopus
Open source pre-operation C2 server based on python and powershell
Stars: ✭ 449 (-16.7%)
Mutual labels: redteam
Stowaway
👻Stowaway -- Multi-hop Proxy Tool for pentesters
Stars: ✭ 500 (-7.24%)
Mutual labels: redteam
Emp3r0r
linux post-exploitation framework made by linux user
Stars: ✭ 419 (-22.26%)
Mutual labels: redteam
Onekey caddy php7 sqlite3
小内存 VPS 一键搭建 Caddy+PHP7+Sqlite3 环境 (支持VPS最小内存64M),一键翻墙 caddy+web(php+sqlite3)+v2ray+bbr。
Stars: ✭ 435 (-19.29%)
Mutual labels: vps
Gtfobins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
Stars: ✭ 6,030 (+1018.74%)
Mutual labels: redteam
A Red Teamer Diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (-29.13%)
Mutual labels: redteam
Hershell
Hershell is a simple TCP reverse shell written in Go.
Stars: ✭ 442 (-18%)
Mutual labels: redteam
Repo Supervisor
Scan your code for security misconfiguration, search for passwords and secrets. 🔍
Stars: ✭ 482 (-10.58%)
Mutual labels: redteam
0xsp Mongoose
a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.
Stars: ✭ 419 (-22.26%)
Mutual labels: redteam
Slackpirate
Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
Stars: ✭ 512 (-5.01%)
Mutual labels: redteam
Squid Pac
利用国外VPS搭建多协议代理服务,squid PAC代理服务器,25端口翻墙 ....墙已加高,https网站已失效,普通站点仍可代理..建议使用ssr替代
Stars: ✭ 514 (-4.64%)
Mutual labels: vps
Defcon27 csharp workshop
Writing custom backdoor payloads with C# - Defcon 27 Workshop
Stars: ✭ 491 (-8.91%)
Mutual labels: redteam
陆吾
888 888 888
888 888 o 888
888 888 d8b 888
888 888 888 888 d888b 888 888 888
888 888 888 888d88888b888 888 888
888 888 888 88888P Y88888 888 888
888 Y88b 888 8888P Y8888 Y88b 888
88888888 "Y88888 888P Y888 "Y88888
陆吾即肩吾,中国古代神话传说中的昆仑山神明,人面虎身虎爪而九尾。
在红队工作中,基础设施的部署和监控是非常重要的一部分,一个灵活快速的自动化部署工具能够使前期繁杂的工作变的高效简单。本项目按照模块化设计,以BS为架构,使用浏览器web界面控制基础设施部署,分别包括域名模块、vps模块、功能模块、配置模块。
安装
这里主要说明下通过docker应该如何进行进行构建:
系统依赖
docker
docker 安装请参考官方文档
系统组件
- redis
- postgresql
- frontend
- backend
配置
系统配置
系统的主要配置都在conf目录下, 安装、使用的时候请注意配置是否正确
conf
├── backend
│ └── env.default
├── frontend
│ └── nginx.conf
├── postgresql
│ └── postgresql.conf
├── redis
│ └── redis.conf
├── supervisor
│ ├── supervisor.api.conf
│ └── supervisor.task.conf
└── terraform
└── terraform.rc
环境变量配置
请注意conf/backend的env.default是示例文件,使用的时候请放在src/backend目录下, 比如:
cp conf/backend/env.default src/backend/.env
根据具体情况,可能需要对配置src/backend/.env进行更改
同理,完成对前端项目的环境配置
cp conf/frontend/env.default src/frontend/.env
初始化系统
请参考alembic官方文档
# 升级到最新记录 && 生成目前的model记录 && 升级到最新记录
alembic upgrade head && alembic revision --autogenerate && alembic upgrade head
# 写入用户数据(在src/backend目录下运行)
python initial_data.py
使用配置
使用系统时请先在配置管理页面完成ISP、SSH等相关配置
- 域名ISP, 目前只支持NameSilo
- VPS ISP, 目前支持Vultr和DigitalOcean
- C2 Profile, 即CS的 profile
- SSH KEY, 这里的SSH KEY会被写入到被创建的VPS,所以也可以通过页面提供的私钥直接连接目标VPS
- 网站模板, 目前是NGINX反代静态网站的模式,所以需要上传zip压缩打包后的静态网站文件
引用的开源项目
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].