A client for kubelet

First-class support for Vault and Kubernetes.

A MITM (monster-in-the-middle) detection tool. Used to build MALCOLM:

A tool that can help detect and takeover subdomains with dead DNS records

Windows remote execution multitool

事件驱动的渗透测试扫描器 Event-driven pentest scanner

OSINT Swiss Army Knife

dnsub一款好用且强大的子域名扫描工具

Capture and parse http traffics

一款帮助云租户发现和测试云上风险、增强云上防护能力的综合性开源工具

A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.

goddi (go dump domain info) dumps Active Directory domain information

Surreptitiously exfiltrate data from the browser over DNS

a fast domain brute tool

Discover internet-wide misconfigurations while drinking coffee

Passive DNS Capture and Monitoring Toolkit

一款渗透场景下的内网漏洞自动化扫描工具

重构了Cobaltstrike Beacon，行为对国内主流杀软免杀，支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.

Respounder detects presence of responder in the network.

Pillage filesystems for sensitive information with Go 🔍

HTTP protocol analysis tool

A robust tunelling solution written in golang

防火墙出网探测工具,内网穿透型socks5代理

An arpspoof alternative (written in Go) that injects spoofed ARP packets into a LAN.

Hawkeye filesystem analysis tool

Merge multiple pcap files together, gracefully.

Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

simple YARA-based IOC scanner

High-interaction MitM SSH honeypot