235 Open source projects that are alternatives of or similar to Luwu

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

List of Awesome Red Teaming Resources

Awesome cloud enumerator

Discord C2 for Redteam....Need a better name

科学上网/翻墙梯子/自由上网/SS/SSR/V2Ray/Brook 搭建教程 免费机场、VPN工具

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

Open source pre-operation C2 server based on python and powershell

一款适用于红蓝对抗中的仿真钓鱼系统

Tactics, Techniques, and Procedures

🙃 Reverse Shell Cheat Sheet 🙃

Offensive Reverse Shell (Cheat Sheet)

linux post-exploitation framework made by linux user

A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Functions that can be used to gain Reverse Shells with PowerShell

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

👻Stowaway -- Multi-hop Proxy Tool for pentesters

OVH VPS/Cloud Monitoring via OVH API

👻Impost3r -- A linux password thief

all paths lead to clouds

小内存 VPS 一键搭建 Caddy+PHP7+Sqlite3 环境 （支持VPS最小内存64M），一键翻墙 caddy+web(php+sqlite3)+v2ray+bbr。

一款可以检测WEB蜜罐并阻断请求的Chrome插件，能够识别并阻断长亭D-sensor、墨安幻阵的部分溯源api

Network Pivoting Toolkit

cobaltstrike ms17-010 module and some other

👻Behold3r -- 收集指定网站的子域名，并可监控指定网站的子域名更新情况，发送变更报告至指定邮箱

AV Evasion Tool For Red Team Ops

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Scan your code for security misconfiguration, search for passwords and secrets. 🔍

Overlord - Red Teaming Infrastructure Automation

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

BadAssMacros - C# based automated Malicous Macro Generator.

Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

Projects for security students

列舉出靠譜、實惠、優秀的VPS供應商，歡迎留言完善　

Search for Unix binaries that can be exploited to bypass system security restrictions.

Load shellcode into a new process

御坂妹妹们的Linux VPS工具箱

An Open Source Control Panel for your Cloud! Deploy and manage LEMP apps in one click!

One line PS scripts that may come handy during your network assesment

generate CobaltStrike's cross-platform payload

C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.

🍓📡🍍Monitor illegal wireless network activities. (Fake Access Points), (WiFi Threats: KARMA Attacks, WiFi Pineapple, Similar SSID, OPN Network Density etc.)

A collection of Cobalt Strike aggressor scripts

Hershell is a simple TCP reverse shell written in Go.

LD_PRELOAD rootkit

Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.

LinkedinScraper is an another information gathering tool written in python. You can scrape employees of companies on Linkedin.com and then create these employee names, titles and emails.

mXtract - Memory Extractor & Analyzer

Assist reverse tcp shells in post-exploration tasks

Collection of PoC and offensive techniques used by the BlackArrow Red Team

Deploy OpenWrt onto VPS

fireELF - Fileless Linux Malware Framework

OSINT

metasploit-framework 图形界面 / 图形化内网渗透工具

利用国外VPS搭建多协议代理服务，squid PAC代理服务器，25端口翻墙 ....墙已加高，https网站已失效，普通站点仍可代理..建议使用ssr替代

Writing custom backdoor payloads with C# - Defcon 27 Workshop

WADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.

This repository contains full code examples from the book Gray Hat C#