一个攻防知识库。A knowledge base for red teaming and offensive security.

Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Dominate Active Directory with PowerShell.

Windows remote execution multitool

mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse

Self-developed tools for Lateral Movement/Code Execution

A tool to make socks connections through HTTP agents

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

APT38 Tactic PoC for Stealing 0days from security researchers

Manipulating and Abusing Windows Access Tokens.

AI-Driven Automated Red Team Orchestration Framework | AI驱动的自动化红队编排框架 | 101 MCP Tools | 2000+ Payloads | Full ATT&CK Coverage | MCTS Attack Planner | Knowledge Graph | Cross-platform

Suricata rules for network anomaly detection

Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement

.NET 4.0 WinRM API Command Execution

C++ WinRM API via Reflective DLL

This tool can be used during internal penetration testing to dump Windows credentials from an already-compromised host. It allows one to dump SYSTEM, SECURITY and SAM hives and once copied to the attacker machines provides option to delete these files to clear the trace.

A set of instructions, command and techniques that help during an Active Directory Assessment.

.NET 4.0 Scheduled Job Lateral Movement

Inject RDPThief into memory with PowerShell.