180 Open source projects that are alternatives of or similar to Uac Silentclean

Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

🍓📡🍍Monitor illegal wireless network activities. (Fake Access Points), (WiFi Threats: KARMA Attacks, WiFi Pineapple, Similar SSID, OPN Network Density etc.)

Extensible Red Team Framework

Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.

This is the list of all rootkits found so far on github and other sites.

Collection of PoC and offensive techniques used by the BlackArrow Red Team

A set of recipes useful in pentesting and red teaming scenarios

OSINT

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

cobaltstrike ms17-010 module and some other

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

记录自己编写、修改的部分工具

Overlord - Red Teaming Infrastructure Automation

Script collection to bypass Network Access Control (NAC, 802.1x)

BadAssMacros - C# based automated Malicous Macro Generator.

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Projects for security students

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

Search for Unix binaries that can be exploited to bypass system security restrictions.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

One line PS scripts that may come handy during your network assesment

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.

这是一个抓取浏览器密码的工具，后续会添加更多功能

一款适用于红蓝对抗中的仿真钓鱼系统

A PowerShell module to deploy active directory decoy objects.

all paths lead to clouds

E-mails, subdomains and names Harvester - OSINT

Discord C2 for Redteam....Need a better name

A collection of electronic hacker magazines carefully curated over the years from multiple sources

一款可以检测WEB蜜罐并阻断请求的Chrome插件，能够识别并阻断长亭D-sensor、墨安幻阵的部分溯源api

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

👻Behold3r -- 收集指定网站的子域名，并可监控指定网站的子域名更新情况，发送变更报告至指定邮箱

mosquito - Automating reconnaissance and brute force attacks

Pentesting/Bugbounty Dockerfiles.

metasploit-framework 图形界面 / 图形化内网渗透工具

Execute ELF files without dropping them on disk

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Wordlists and passwords handcrafted with ♥

Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

Collection of quality safety articles. Awesome articles.

Scan for and exploit Consul agents

mXtract - Memory Extractor & Analyzer

PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

一个简单实用的FOFA客户端 By flashine

Scan your code for security misconfiguration, search for passwords and secrets. 🔍

🌒 Shell command obfuscation to avoid detection systems

红队作战中比较常遇到的一些重点系统漏洞整理。

Load shellcode into a new process

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Project to enumerate proxy configurations and generate shellcode from CobaltStrike

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

backdorOS is an in-memory OS written in Python 2.7 with a built-in in-memory filesystem, hooks for open() calls and imports, Python REPL etc.

fireELF - Fileless Linux Malware Framework