DirtyPipe's Projects
APT
2022 护网行动 POC 整理
Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
红队常用、redteam、本项目集成了全网优秀的攻防工具项目,包含自动化利用,子域名、敏感目录、端口等扫描,各大中间件,cms漏洞利用工具以及应急响应等资料。
恶意软件分析套件
Apache Log4j 远程代码执行
Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.
灯塔(最新版)指纹添加脚本!
A Linux Auditd rule set mapped to MITRE's Attack Framework
网络安全 · 攻防对抗 · 蓝队清单,中文版
List of Awesome Red Teaming Resources
Usage: python badtunnel.py wpad_server_ip
BLACKHAT USA2022 PDF Public
整理笔记
You didn't think I'd go and leave the blue team out, right?
一款基于BurpSuite的被动式FastJson检测插件
一款基于BurpSuite的被动式shiro检测插件
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
cobaltstrike4.x版本破解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子认证
Codeql学习笔记
Cowrie SSH/Telnet Honeypot http://cowrie.readthedocs.io
Collection of C# scripts
This is a tool published for the Citrix ADC (NetScaler) vulnerability. We are only disclosing this due to others publishing the exploit code first.
A Proof-of-Concept (PoC) of the Spring Core RCE (Spring4Shell or CVE-2022-22963) in Bash (Linux).
Update by evilcos, for DarkHandBook.io
Writing custom backdoor payloads with C# - Defcon 27
网站目录、后台扫描 基于御剑字典