omaramin17 Goto Github PK
Name: Omar A.
Type: User
Bio: hunting threats
Twitter: beacon_exe
Name: Omar A.
Type: User
Bio: hunting threats
Twitter: beacon_exe
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Custom PowerShell module to setup an Active Directory lab environment to practice penetration testing.
A fast enumeration tool for Windows Active Directory Pentesting written in Go
Malware development for red teaming workshop
Artificial Intelligence Infrastructure-as-Code Generator.
免杀框架
cobaltstrike 直接判断目标beacon存在的杀软
Interesting apt report collection and some special ioc express
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
C# C2 Framework centered around Stage 1 operations
一个红队知识仓库
BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
这是一个抓取浏览器密码的工具,后续会添加更多功能
Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles
攻防演练过程中,我们通常会用浏览器访问一些资产,但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等,该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
An open-source post-exploitation framework for students, researchers and developers.
Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
一键修改exe、dll的编译时间、创建时间、修改时间和访问时间
VSCode Integration POC for ChatGPT
Self-developed tools for Lateral Movement/Code Execution
Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.
CobaltStrike
A small Aggressor script to help Red Teams identify foreign processes on a host machine
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.