{"id":1676,"date":"2023-04-02T12:51:14","date_gmt":"2023-04-02T04:51:14","guid":{"rendered":"https:\/\/www.aqwu.net\/wp\/?p=1676"},"modified":"2023-04-02T16:58:01","modified_gmt":"2023-04-02T08:58:01","slug":"100-%e6%ac%be%e6%9c%80%e4%bd%b3%e5%85%8d%e8%b4%b9%e7%ba%a2%e9%98%9f%e5%b7%a5%e5%85%b7-2023","status":"publish","type":"post","link":"https:\/\/www.aqwu.net\/wp\/?p=1676","title":{"rendered":"100 \u6b3e\u6700\u4f73\u514d\u8d39\u7ea2\u961f\u5de5\u5177 \u2013 2023"},"content":{"rendered":"\n<p>\u6211\u4eec\u5728\u8fd9\u91cc\u5e26\u6765\u4e86\u4e00\u7cfb\u5217\u5f00\u6e90\u548c\u5546\u4e1a\u7ea2\u961f\u5de5\u5177\uff0c\u8fd9\u4e9b\u5de5\u5177\u6709\u52a9\u4e8e\u7ea2\u961f\u8fd0\u8425\u3002\u6b64\u5b58\u50a8\u5e93\u5c06\u5e2e\u52a9\u60a8\u5b8c\u6210\u7ea2\u961f\u53c2\u4e0e\u7684\u5927\u90e8\u5206\u5de5\u4f5c\u3002\u60a8\u8fd8\u53ef\u4ee5\u52a0\u5165\u8ba4\u8bc1\u7ea2\u961f\u4e13\u5bb6\u8ba1\u5212\uff0c\u6210\u4e3a<a rel=\"noreferrer noopener\" href=\"https:\/\/ethicalhackersacademy.com\/collections\/ethical-hackers-academy\/products\/certified-redteam-expert\" target=\"_blank\"><strong>\u7ea2\u961f<\/strong><\/a>\u8fd0\u8425\u5927\u5e08\u5e76\u4e86\u89e3\u73b0\u5b9e\u4e16\u754c\u7684\u653b\u51fb\u3002<\/p>\n\n\n\n<p>\u53c2\u8003\u94fe\u63a5\uff1a<a href=\"https:\/\/cybersecuritynews.com\/red-team-tools\/\">100 \u5e74 2023 \u6b3e\u6700\u4f73\u514d\u8d39\u7ea2\u961f\u5de5\u5177 &#8211; \u7f51\u7edc\u5b89\u5168\u65b0\u95fb (cybersecuritynews.com)<\/a><\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-red-team-tools-operations\">\u7ea2\u961f\u5de5\u5177<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u4fa6\u5bdf<\/li>\n\n\n\n<li>\u6b66\u5668\u5316<\/li>\n\n\n\n<li>\u4ea4\u4ed8<\/li>\n\n\n\n<li>\u6307\u6325\u4e0e\u63a7\u5236<\/li>\n\n\n\n<li>\u6a2a\u5411\u79fb\u52a8<\/li>\n\n\n\n<li>\u5efa\u7acb\u7acb\u8db3\u70b9<\/li>\n\n\n\n<li>\u63d0\u5347\u6743\u9650<\/li>\n\n\n\n<li>\u6570\u636e\u5916\u6cc4<\/li>\n\n\n\n<li>\u5176\u4ed6<\/li>\n\n\n\n<li>\u53c2\u8003\u8d44\u6599<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>\u6700\u4f73\u7ea2\u961f\u5de5\u51772023<\/strong><\/h2>\n\n\n\n<h2 class=\"wp-block-heading has-large-font-size\" id=\"h-reconnaissance\"><strong><a href=\"https:\/\/github.com\/infosecn1nja\/Red-Teaming-Toolkit#reconnaissance\"><\/a>\u4e00\u3001\u4fa6\u5bdf(Reconnaissance)<\/strong><\/h2>\n\n\n\n<h3 class=\"wp-block-heading has-medium-font-size\" id=\"h-active-intelligence-gathering\"><a href=\"https:\/\/github.com\/infosecn1nja\/Red-Teaming-Toolkit#active-intelligence-gathering\"><\/a><strong>1.\u4e3b\u52a8\u60c5\u62a5\u6536\u96c6<\/strong>\uff08<strong>Active Intelligence Gathering<\/strong>\uff09<\/h3>\n\n\n\n<p class=\"has-small-font-size\"><a href=\"https:\/\/github.com\/ChrisTruncer\/EyeWitness\"><strong>EyeWitness<\/strong><\/a>\u65e8\u5728\u62cd\u6444\u7f51\u7ad9\u7684\u5c4f\u5e55\u622a\u56fe\uff0c\u63d0\u4f9b\u4e00\u4e9b\u670d\u52a1\u5668\u5934\u4fe1\u606f\uff0c\u5e76\u5728\u53ef\u80fd\u7684\u60c5\u51b5\u4e0b\u8bc6\u522b\u9ed8\u8ba4\u51ed\u636e\u3002<br><a href=\"https:\/\/github.com\/jordanpotti\/AWSBucketDump\"><strong>AWSBucketDump<\/strong><\/a>\u662f\u4e00\u4e2a\u5de5\u5177\uff0c\u53ef\u4ee5\u5feb\u901f\u679a\u4e3eAWS S3\u5b58\u50a8\u6876\u4ee5\u67e5\u627e\u53ef\u7591\u5185\u5bb9\u3002<br><a href=\"https:\/\/github.com\/michenriksen\/aquatone\"><strong>AQUATONE<\/strong><\/a>\u662f\u4e00\u7ec4\u7528\u4e8e\u5bf9\u57df\u540d\u6267\u884c\u4fa6\u5bdf\u7684\u5de5\u5177\u3002<br><a href=\"https:\/\/github.com\/BishopFox\/spoofcheck\"><strong>spoofcheck<\/strong><\/a>\u662f\u4e00\u4e2a\u7a0b\u5e8f\uff0c\u7528\u4e8e\u68c0\u67e5\u57df\u540d\u662f\u5426\u53ef\u4ee5\u88ab\u6b3a\u9a97\u3002\u8be5\u7a0b\u5e8f\u68c0\u67e5SPF\u548cDMARC\u8bb0\u5f55\u4ee5\u67e5\u627e\u5141\u8bb8\u6b3a\u9a97\u7684\u5f31\u914d\u7f6e\u3002<br><strong><a href=\"https:\/\/github.com\/nmap\/nmap\">Nmap<\/a><\/strong>\u7528\u4e8e\u53d1\u73b0\u8ba1\u7b97\u673a\u7f51\u7edc\u4e0a\u7684\u4e3b\u673a\u548c\u670d\u52a1\uff0c\u4ece\u800c\u6784\u5efa\u7f51\u7edc\u5730\u56fe\u3002<br><strong><a href=\"https:\/\/github.com\/darkoperator\/dnsrecon\">dnsrecon<\/a><\/strong>\u662f\u4e00\u4e2a\u5de5\u5177\uff0c\u7528\u4e8e\u6267\u884cDNS\u679a\u4e3e\u811a\u672c\u3002<br><strong><a href=\"https:\/\/github.com\/maurosoria\/dirsearch\">dirsearch<\/a><\/strong>\u662f\u4e00\u4e2a\u7b80\u5355\u7684\u547d\u4ee4\u884c\u5de5\u5177\uff0c\u65e8\u5728\u66b4\u529b\u7834\u89e3\u7f51\u7ad9\u4e2d\u7684\u76ee\u5f55\u548c\u6587\u4ef6\u3002<br><strong><a href=\"https:\/\/github.com\/1N3\/Sn1per\">Sn1per<\/a><\/strong>\u662f\u4e00\u4e2a\u81ea\u52a8\u5316\u7684\u6e17\u900f\u6d4b\u8bd5\u4fa6\u5bdf\u626b\u63cf\u5668\u3002<\/p>\n\n\n\n<p class=\"has-medium-font-size\"><strong>2.\u88ab\u52a8\u60c5\u62a5\u6536\u96c6\uff08Passive Intelligence Gathering\uff09<\/strong><\/p>\n\n\n\n<p class=\"has-small-font-size\"><strong><a href=\"https:\/\/github.com\/SpiderLabs\/social_mapper\">Social Mapper<\/a><\/strong>\u662f\u4e00\u4e2a<strong><a href=\"https:\/\/cybersecuritynews.com\/osint-tools\/\">OSINT<\/a><\/strong>\u793e\u4ea4\u5a92\u4f53\u6620\u5c04\u5de5\u5177\uff0c\u5b83\u63a5\u53d7\u4e00\u4e2a\u540d\u79f0\u548c\u56fe\u50cf\u5217\u8868\uff08\u6216LinkedIn\u516c\u53f8\u540d\u79f0\uff09\uff0c\u5e76\u5728\u591a\u4e2a\u793e\u4ea4\u5a92\u4f53\u7f51\u7ad9\u4e0a\u81ea\u52a8\u641c\u7d22\u76ee\u6807\uff0c\u89c4\u6a21\u5e9e\u5927\uff0c\u4e0d\u53d7API\u9650\u5236\uff0c\u5b83\u4f7f\u7528Selenium\u9a71\u52a8\u6d4f\u89c8\u5668\u3002\u751f\u6210\u62a5\u544a\u4ee5\u534f\u52a9\u5728\u4e0d\u540c\u7ad9\u70b9\u4e4b\u95f4\u76f8\u4e92\u5173\u8054\u7684\u76ee\u6807\u3002<br><strong><a href=\"https:\/\/github.com\/xillwillx\/skiptracer\">skiptracer<\/a><\/strong>\u662f\u4e00\u4e2aOSINT\u7f51\u7edc\u722c\u866b\u6846\u67b6\uff0c\u5229\u7528Python\u7684\u57fa\u672c\u7f51\u7edc\u722c\u866b\u6280\u672f\uff08BeautifulSoup\uff09\uff0c\u5728\u4e00\u4e2a\u5f88\u5c0f\u7684\u9884\u7b97\u5185\u5728PII\u4ed8\u8d39\u7ad9\u70b9\u4e0a\u7f16\u5236\u76ee\u6807\u7684\u88ab\u52a8\u4fe1\u606f\u3002<br><strong><a href=\"https:\/\/github.com\/ElevenPaths\/FOCA\">FOCA<\/a><\/strong>\uff08\u4f7f\u7528\u6536\u96c6\u7684\u5f52\u6863\u6307\u7eb9\u8bc6\u522b\u7ec4\u7ec7\uff09\u662f\u4e00\u4e2a\u5de5\u5177\uff0c\u4e3b\u8981\u7528\u4e8e\u67e5\u627e\u6587\u6863\u4e2d\u7684\u5143\u6570\u636e\u548c\u9690\u85cf\u4fe1\u606f\u3002<br><strong><a href=\"https:\/\/github.com\/laramies\/theHarvester\">theHarvester<\/a><\/strong>\u662f\u4e00\u4e2a\u7528\u4e8e\u4ece\u4e0d\u540c\u516c\u5171\u6765\u6e90\u6536\u96c6\u5b50\u57df\u540d\uff0c\u7535\u5b50\u90ae\u4ef6\u5730\u5740\uff0c\u865a\u62df\u4e3b\u673a\uff0c\u5f00\u653e\u7aef\u53e3\/\u6a2a\u5e45\u548c\u5458\u5de5\u540d\u79f0\u7684\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/laramies\/metagoofil\">Metagoofil<\/a><\/strong>\u662f\u4e00\u4e2a\u7528\u4e8e\u63d0\u53d6\u76ee\u6807\u7f51\u7ad9\u4e0a\u53ef\u7528\u7684\u516c\u5171\u6587\u6863\uff08pdf\uff0cdoc\uff0cxls\uff0cppt\u7b49\uff09\u7684\u5143\u6570\u636e\u7684\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/killswitch-GUI\/SimplyEmail\">SimplyEmail<\/a><\/strong>\u662f\u4e00\u4e2a\u5feb\u901f\u800c\u7b80\u4fbf\u7684\u7535\u5b50\u90ae\u4ef6\u6536\u96c6\u5de5\u5177\uff0c\u63d0\u4f9b\u4e00\u4e2a\u53ef\u6784\u5efa\u7684\u6846\u67b6\u3002<br><strong><a href=\"https:\/\/github.com\/dxa4481\/truffleHog\">truffleHog<\/a><\/strong>\u641c\u7d22Git\u4ed3\u5e93\u4e2d\u7684\u5bc6\u7801\u548c\u79d8\u5bc6\uff0c\u6df1\u5165\u6316\u6398\u63d0\u4ea4\u5386\u53f2\u548c\u5206\u652f\u3002<br><strong><a href=\"https:\/\/github.com\/ChrisTruncer\/Just-Metadata\">Just-Metadata<\/a><\/strong>\u662f\u4e00\u4e2a\u6536\u96c6\u548c\u5206\u6790IP\u5730\u5740\u5143\u6570\u636e\u7684\u5de5\u5177\u3002\u5b83\u5c1d\u8bd5\u5728\u5927\u6570\u636e\u96c6\u4e2d\u67e5\u627e\u7cfb\u7edf\u4e4b\u95f4\u7684\u5173\u7cfb\u3002<br><strong><a href=\"https:\/\/github.com\/nccgroup\/typofinder\">typofinder<\/a><\/strong>\u662f\u4e00\u4e2a\u57df\u540d\u9519\u5b57\u67e5\u627e\u5668\uff0c\u53ef\u4ee5\u663e\u793aIP\u5730\u5740\u7684\u56fd\u5bb6\u3002<br><strong><a href=\"https:\/\/github.com\/thewhiteh4t\/pwnedOrNot\">pwnedOrNot<\/a><\/strong>\u662f\u4e00\u4e2aPython\u811a\u672c\uff0c\u7528\u4e8e\u68c0\u67e5\u7535\u5b50\u90ae\u4ef6\u5e10\u6237\u662f\u5426\u5728\u6570\u636e\u6cc4\u9732\u4e2d\u88ab\u5165\u4fb5\uff0c\u5982\u679c\u7535\u5b50\u90ae\u4ef6\u5e10\u6237\u88ab\u5165\u4fb5\uff0c\u5219\u7ee7\u7eed\u67e5\u627e\u88ab\u4fb5\u5165\u5e10\u6237\u7684\u5bc6\u7801\u3002<br><strong><a href=\"https:\/\/github.com\/metac0rtex\/GitHarvester\">GitHarvester<\/a><\/strong>\u662f\u7528\u4e8e\u4eceGitHub\u6536\u96c6\u4fe1\u606f\u7684\u5de5\u5177\uff0c\u7c7b\u4f3c\u4e8eGoogle Dork\u3002<br><strong><a href=\"https:\/\/github.com\/davidtavarez\/pwndb\/\">pwndb<\/a><\/strong>\u662f\u4e00\u4e2aPython\u547d\u4ee4\u884c\u5de5\u5177\uff0c\u7528\u4e8e\u4f7f\u7528\u540c\u540d\u7684Onion\u670d\u52a1\u641c\u7d22\u6cc4\u9732\u7684\u51ed\u636e\u3002<br><strong><a href=\"https:\/\/github.com\/vysecurity\/LinkedInt\">LinkedInt<\/a><\/strong>\u662fLinkedIn\u4fa6\u5bdf\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/m8r0wn\/CrossLinked\">CrossLinked<\/a><\/strong>\u662f\u4e00\u4e2aLinkedIn\u679a\u4e3e\u5de5\u5177\uff0c\u901a\u8fc7\u641c\u7d22\u5f15\u64ce\u722c\u53d6\u6765\u63d0\u53d6\u4e00\u4e2a\u7ec4\u7ec7\u4e2d\u7684\u6709\u6548\u5458\u5de5\u540d\u79f0\u3002<br><strong><a href=\"https:\/\/github.com\/Edu4rdSHL\/findomain\">findomain<\/a><\/strong>\u662f\u4e00\u4e2a\u5feb\u901f\u7684\u57df\u540d\u679a\u4e3e\u5de5\u5177\uff0c\u4f7f\u7528Certificate Transparency\u65e5\u5fd7\u548c\u4e00\u4e9bAPI\u3002<\/p>\n\n\n\n<p class=\"has-medium-font-size\"><strong>3.\u6846\u67b6\uff08Frameworks\uff09<\/strong><\/p>\n\n\n\n<p class=\"has-small-font-size\"><strong><a href=\"https:\/\/www.paterva.com\/web7\/downloads.php\">Maltego<\/a><\/strong>\u662f\u4e00\u4e2a\u72ec\u7279\u7684\u5e73\u53f0\uff0c\u65e8\u5728\u4e3a\u7ec4\u7ec7\u62e5\u6709\u548c\u8fd0\u8425\u7684\u73af\u5883\u63d0\u4f9b\u6e05\u6670\u7684\u5a01\u80c1\u56fe\u50cf\u3002<br><strong><a href=\"https:\/\/github.com\/smicallef\/spiderfoot\">SpiderFoot<\/a><\/strong>\u662f\u4e00\u4e2a\u5f00\u6e90\u7684\u8db3\u8ff9\u548c\u60c5\u62a5\u6536\u96c6\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/DataSploit\/datasploit\">datasploit<\/a><\/strong>\u662f\u4e00\u4e2aOSINT\u6846\u67b6\uff0c\u53ef\u5728\u516c\u53f8\u3001\u4eba\u5458\u3001\u7535\u8bdd\u53f7\u7801\u3001\u6bd4\u7279\u5e01\u5730\u5740\u7b49\u65b9\u9762\u6267\u884c\u5404\u79cd\u4fa6\u5bdf\u6280\u672f\uff0c\u6c47\u603b\u6240\u6709\u539f\u59cb\u6570\u636e\uff0c\u5e76\u4ee5\u591a\u79cd\u683c\u5f0f\u63d0\u4f9b\u6570\u636e\u3002<br><strong><a href=\"https:\/\/bitbucket.org\/LaNMaSteR53\/recon-ng\">Recon-ng<\/a><\/strong>\u662f\u4e00\u4e2a\u7528Python\u7f16\u5199\u7684\u5168\u529f\u80fdWeb\u4fa6\u5bdf\u6846\u67b6\u3002<\/p>\n\n\n\n<p class=\"has-large-font-size\"><strong>\u4e8c\u3001\u6b66\u5668\u5316\uff08Weaponization\uff09<\/strong><\/p>\n\n\n\n<p class=\"has-small-font-size\"><strong><a href=\"https:\/\/github.com\/WyAtu\/CVE-2018-20250\">WinRAR\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c<\/a><\/strong>CVE-2018-20250\u6f0f\u6d1e\u7684POC\u5229\u7528\u7a0b\u5e8f\u3002<br><strong><a href=\"https:\/\/github.com\/rxwx\/CVE-2017-8570\">\u590d\u5408\u6807\u8bc6\u7b26<\/a><\/strong>(<strong><a rel=\"noreferrer noopener\" href=\"https:\/\/github.com\/rxwx\/CVE-2017-8570\" target=\"_blank\">Composite Moniker<\/a><\/strong>)CVE-2017-8570\u6f0f\u6d1e\u7684POC\u5229\u7528\u7a0b\u5e8f\u3002<br><strong><a href=\"https:\/\/github.com\/bhdresh\/CVE-2017-8759\">\u5229\u7528\u5de5\u5177\u5305<\/a><\/strong> <strong><a href=\"https:\/\/github.com\/bhdresh\/CVE-2017-8759\">CVE-2017-8759<\/a><\/strong>\u662f\u4e00\u6b3e\u65b9\u4fbf\u7684Python\u811a\u672c\uff0c\u4e3a\u6e17\u900f\u6d4b\u8bd5\u4eba\u5458\u548c\u5b89\u5168\u7814\u7a76\u4eba\u5458\u63d0\u4f9b\u4e86\u4e00\u79cd\u5feb\u901f\u6709\u6548\u7684\u65b9\u5f0f\u6765\u6d4b\u8bd5Microsoft .NET Framework RCE\u3002<br><strong><a href=\"https:\/\/github.com\/unamer\/CVE-2017-11882\">CVE-2017-11882<\/a><\/strong>\u6f0f\u6d1e\u7684\u5229\u7528\u7a0b\u5e8f\u6700\u591a\u53ef\u63a5\u53d717k\u5b57\u8282\u957f\u7684\u547d\u4ee4\/\u4ee3\u7801\u3002<br><strong><a href=\"https:\/\/github.com\/anbai-inc\/CVE-2018-4878\">Adobe Flash<\/a><\/strong>\u6f0f\u6d1eCVE-2018-4878\u3002<br><strong><a href=\"https:\/\/github.com\/bhdresh\/CVE-2017-0199\">\u5229\u7528\u5de5\u5177\u5305CVE-2017-0199<\/a><\/strong>\u662f\u4e00\u6b3e\u65b9\u4fbf\u7684Python\u811a\u672c\uff0c\u4e3a\u6e17\u900f\u6d4b\u8bd5\u4eba\u5458\u548c\u5b89\u5168\u7814\u7a76\u4eba\u5458\u63d0\u4f9b\u4e86\u4e00\u79cd\u5feb\u901f\u6709\u6548\u7684\u65b9\u5f0f\u6765\u6d4b\u8bd5Microsoft Office RCE\u3002<br><strong><a href=\"https:\/\/github.com\/nccgroup\/demiguise\">demiguise<\/a><\/strong>\u662fRedTeams\u7684HTA\u52a0\u5bc6\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/0xdeadbeefJERKY\/Office-DDE-Payloads\">Office-DDE-Payloads<\/a><\/strong>\u662f\u4e00\u7ec4\u811a\u672c\u548c\u6a21\u677f\uff0c\u7528\u4e8e\u751f\u6210\u5d4c\u5165DDE\u3001\u65e0\u5b8f\u547d\u4ee4\u6267\u884c\u6280\u672f\u7684Office\u6587\u6863\u3002<br><strong><a href=\"https:\/\/github.com\/mdsecactivebreach\/CACTUSTORCH\">CACTUSTORCH<\/a><\/strong>\u662f\u7528\u4e8e\u5bf9\u6297\u4eff\u771f\u7684\u6709\u6548\u8d1f\u8f7d\u751f\u6210\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/mdsecactivebreach\/SharpShooter\">SharpShooter<\/a><\/strong>\u662f\u4e00\u4e2a\u6709\u6548\u8f7d\u8377\u521b\u5efa\u6846\u67b6\uff0c\u7528\u4e8e\u68c0\u7d22\u548c\u6267\u884c\u4efb\u610fCSharp\u6e90\u4ee3\u7801\u3002<br><strong><a href=\"https:\/\/github.com\/Mr-Un1k0d3r\/DKMC\">Don&#8217;t kill my cat<\/a><\/strong>\u662f\u4e00\u4e2a\u751f\u6210\u6df7\u6dc6shellcode\u7684\u5de5\u5177\uff0c\u8be5shellcode\u5b58\u50a8\u5728\u591a\u8bed\u8a00\u56fe\u50cf\u4e2d\u3002\u56fe\u50cf\u662f100%\u6709\u6548\u7684\uff0c\u4e5f\u662f100%\u6709\u6548\u7684shellcode\u3002<br><strong><a href=\"https:\/\/github.com\/Mr-Un1k0d3r\/MaliciousMacroGenerator\">\u6076\u610f\u5b8f\u751f\u6210\u5668\u5b9e\u7528\u7a0b\u5e8f<\/a><\/strong>(<a rel=\"noreferrer noopener\" href=\"https:\/\/github.com\/Mr-Un1k0d3r\/MaliciousMacroGenerator\" target=\"_blank\"><strong>Malicious Macro Generator Utility<\/strong><\/a>)\u662f\u4e00\u6b3e\u7b80\u5355\u7684\u5b9e\u7528\u7a0b\u5e8f\uff0c\u8bbe\u8ba1\u7528\u4e8e\u751f\u6210\u6df7\u6dc6\u7684\u5b8f\uff0c\u8fd8\u5305\u62ecAV \/\u6c99\u7bb1\u9003\u9038\u673a\u5236\u3002<br><strong><a href=\"https:\/\/github.com\/Mr-Un1k0d3r\/SCT-obfuscator\">SCT\u6df7\u6dc6\u5668<\/a><\/strong>\u662fCobalt Strike SCT\u8d1f\u8f7d\u6df7\u6dc6\u5668\u3002<br><strong><a href=\"https:\/\/github.com\/danielbohannon\/Invoke-Obfuscation\">Invoke-Obfuscation<\/a><\/strong>\u662fPowerShell\u6df7\u6dc6\u5668\u3002<br><strong><a href=\"https:\/\/github.com\/danielbohannon\/Invoke-CradleCrafter\">Invoke-CradleCrafter<\/a><\/strong>\u662fPowerShell\u8fdc\u7a0b\u4e0b\u8f7dcradle\u751f\u6210\u5668\u548c\u6df7\u6dc6\u5668\u3002<br><strong><a href=\"https:\/\/github.com\/danielbohannon\/Invoke-DOSfuscation\">Invoke-DOSfuscation<\/a><\/strong>\u662fcmd.exe\u547d\u4ee4\u6df7\u6dc6\u751f\u6210\u5668\u548c\u68c0\u6d4b\u6d4b\u8bd5\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/vysec\/morphHTA\">morphHTA<\/a><\/strong>\u662f\u53d8\u5f62Cobalt Strike\u7684evil.HTA\u3002<br><strong><a href=\"https:\/\/github.com\/trustedsec\/unicorn\">\u72ec\u89d2\u517d<\/a><\/strong><a href=\"https:\/\/github.com\/trustedsec\/unicorn\"><strong>(unicorn)<\/strong><\/a>\u662f\u4e00\u4e2a\u7b80\u5355\u7684\u5de5\u5177\uff0c\u7528\u4e8e\u4f7f\u7528PowerShell\u964d\u7ea7\u653b\u51fb\u5e76\u5c06shellcode\u76f4\u63a5\u6ce8\u5165\u5185\u5b58\u3002Shellter \u662f\u4e00\u6b3e\u52a8\u6001 shellcode \u6ce8\u5165\u5de5\u5177\uff0c\u662f\u7b2c\u4e00\u4e2a\u771f\u6b63\u7684\u52a8\u6001 PE \u611f\u67d3\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/Arno0x\/EmbedInHTML\">EmbedInHTML<\/a><\/strong> \u5c06\u4efb\u610f\u6587\u4ef6\u5d4c\u5165\u5230 HTML \u6587\u4ef6\u4e2d\u5e76\u9690\u85cf\u8d77\u6765\u3002<br><strong><a href=\"https:\/\/github.com\/secretsquirrel\/SigThief\">SigThief<\/a><\/strong> \u9010\u4e2a\u7a83\u53d6\u7b7e\u540d\u5e76\u4f7f\u4e00\u4e2a\u7b7e\u540d\u65e0\u6548\u3002<br><strong><a href=\"https:\/\/github.com\/Veil-Framework\/Veil\">Veil<\/a><\/strong> \u662f\u4e00\u6b3e\u65e8\u5728\u751f\u6210\u53ef\u7ed5\u8fc7\u5e38\u89c1\u9632\u75c5\u6bd2\u89e3\u51b3\u65b9\u6848\u7684 metasploit \u8f7d\u8377\u7684\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/Arvanaghi\/CheckPlease\">CheckPlease<\/a><\/strong> \u662f\u4e00\u7ec4\u7528 PowerShell\u3001Python\u3001Go\u3001Ruby\u3001C\u3001C#\u3001Perl \u548c Rust \u7f16\u5199\u7684\u9003\u907f\u6c99\u7bb1\u7684\u6a21\u5757\u3002<br><strong><a href=\"http:\/\/Invoke-PSImage\">Invoke-PSImage<\/a><\/strong> \u662f\u4e00\u6b3e\u5de5\u5177\uff0c\u7528\u4e8e\u5728 PNG \u6587\u4ef6\u7684\u50cf\u7d20\u4e2d\u5d4c\u5165 PowerShell \u811a\u672c\uff0c\u5e76\u751f\u6210\u4e00\u4e2a\u5355\u884c\u6267\u884c\u547d\u4ee4\u3002<br><strong><a href=\"https:\/\/github.com\/curi0usJack\/luckystrike\">LuckyStrike<\/a><\/strong> \u662f\u4e00\u6b3e\u57fa\u4e8e PowerShell \u7684\u5b9e\u7528\u7a0b\u5e8f\uff0c\u7528\u4e8e\u521b\u5efa\u6076\u610f\u7684 Office \u5b8f\u6587\u6863\uff0c\u4ec5\u7528\u4e8e\u6e17\u900f\u6d4b\u8bd5\u6216\u6559\u80b2\u76ee\u7684\u3002<br><strong><a href=\"https:\/\/github.com\/Mr-Un1k0d3r\/ClickOnceGenerator\">ClickOnceGenerator<\/a><\/strong> \u662f\u4e00\u4e2a\u7528\u4e8e\u751f\u6210\u6076\u610f\u7684 ClickOnce \u6587\u4ef6\u7684\u5feb\u901f\u5de5\u5177\uff0c\u7528\u4e8e\u7ea2\u961f\u3002\u9ed8\u8ba4\u5e94\u7528\u7a0b\u5e8f\u662f\u4e00\u4e2a\u7b80\u5355\u7684 WebBrowser \u5c0f\u90e8\u4ef6\uff0c\u6307\u5411\u60a8\u9009\u62e9\u7684\u7f51\u7ad9\u3002<br><strong><a href=\"https:\/\/github.com\/sevagas\/macro_pack\">macro_pack<\/a><\/strong> \u662f\u7531 @EmericNasi \u5236\u4f5c\u7684\u5de5\u5177\uff0c\u7528\u4e8e\u81ea\u52a8\u5316\u6a21\u7cca\u548c\u751f\u6210 MS Office \u6587\u6863\u3001VB \u811a\u672c\u548c\u5176\u4ed6\u683c\u5f0f\uff0c\u7528\u4e8e\u6e17\u900f\u6d4b\u8bd5\u3001\u6f14\u793a\u548c\u793e\u4f1a\u5de5\u7a0b\u5b66\u8bc4\u4f30\u3002<br><strong><a href=\"https:\/\/github.com\/Cn33liz\/StarFighters\">StarFighters<\/a><\/strong> \u662f\u4e00\u4e2a\u57fa\u4e8e JavaScript \u548c VBScript \u7684 Empire \u542f\u52a8\u5668\u3002<br><strong><a href=\"https:\/\/github.com\/trustedsec\/nps_payload\">nps_payload<\/a><\/strong> \u6b64\u811a\u672c\u5c06\u4e3a\u57fa\u672c\u5165\u4fb5\u68c0\u6d4b\u751f\u6210\u6709\u6548\u8d1f\u8f7d\u3002\u5b83\u5229\u7528\u4e86\u6765\u81ea\u51e0\u4e2a\u4e0d\u540c\u6765\u6e90\u7684\u516c\u5f00\u6f14\u793a\u6280\u672f\u3002<br><strong><a href=\"https:\/\/github.com\/trustedsec\/nps_payload\">SocialEngineeringPayloads<\/a><\/strong> \u662f\u7528\u4e8e\u51ed\u636e\u7a83\u53d6\u548c\u9488\u5bf9\u6027\u9493\u9c7c\u653b\u51fb\u7684\u793e\u4f1a\u5de5\u7a0b\u5b66\u6280\u5de7\u548c\u6709\u6548\u8d1f\u8f7d\u7684\u96c6\u5408\u3002<br><strong><a href=\"https:\/\/github.com\/trustedsec\/social-engineer-toolkit\">\u793e\u4f1a\u5de5\u7a0b\u5de5\u5177\u5305<\/a><\/strong>(<strong><a rel=\"noreferrer noopener\" href=\"https:\/\/github.com\/trustedsec\/social-engineer-toolkit\" target=\"_blank\">The Social-Engineer Toolkit<\/a><\/strong>)\u662f\u4e3a\u793e\u4f1a\u5de5\u7a0b\u5b66\u800c\u8bbe\u8ba1\u7684\u5f00\u6e90\u6e17\u900f\u6d4b\u8bd5\u6846\u67b6\u3002<br><strong><a href=\"https:\/\/github.com\/ryhanson\/phishery\">Phishery <\/a><\/strong>\u662f\u4e00\u4e2a\u7b80\u5355\u7684\u542f\u7528 SSL \u7684 HTTP \u670d\u52a1\u5668\uff0c\u4e3b\u8981\u7528\u4e8e\u901a\u8fc7\u57fa\u672c\u8eab\u4efd\u9a8c\u8bc1\u9493\u9c7c\u51ed\u636e\u3002<br><strong><a href=\"https:\/\/github.com\/p3nt4\/PowerShdll\">PowerShdll<\/a><\/strong> \u4f7f\u7528 rundll32 \u8fd0\u884c PowerShell\u3002\u7ed5\u8fc7\u8f6f\u4ef6\u9650\u5236\u3002<br><strong><a href=\"https:\/\/github.com\/api0cradle\/UltimateAppLockerByPassList\">\u7ec8\u6781 AppLocker Bypass \u5217\u8868<\/a><\/strong>\u7684\u76ee\u6807\u662f\u8bb0\u5f55\u7ed5\u8fc7 AppLocker \u7684\u6700\u5e38\u89c1\u6280\u672f\u3002<br><strong><a href=\"https:\/\/github.com\/sensepost\/ruler\">Ruler<\/a><\/strong> \u662f\u4e00\u4e2a\u5de5\u5177\uff0c\u5141\u8bb8\u60a8\u901a\u8fc7 MAPI\/HTTP \u6216 RPC\/HTTP \u534f\u8bae\u8fdc\u7a0b\u4e0e Exchange \u670d\u52a1\u5668\u8fdb\u884c\u4ea4\u4e92\u3002<br><strong><a href=\"https:\/\/github.com\/enigma0x3\/Generate-Macro\">Generate-Macro<\/a><\/strong> \u662f\u4e00\u4e2a\u72ec\u7acb\u7684 PowerShell \u811a\u672c\uff0c\u5c06\u751f\u6210\u4e00\u4e2a\u5305\u542b\u6307\u5b9a\u8d1f\u8f7d\u548c\u6301\u4e45\u5316\u65b9\u6cd5\u7684\u6076\u610f Microsoft Office \u6587\u6863\u3002<br><strong><a href=\"https:\/\/github.com\/infosecn1nja\/MaliciousMacroMSBuild\">Malicious Macro MSBuild Generator<\/a><\/strong> \u751f\u6210\u6076\u610f\u5b8f\u5e76\u901a\u8fc7 MSBuild \u5e94\u7528\u7a0b\u5e8f\u767d\u540d\u5355\u7ed5\u8fc7\u6267\u884c Powershell \u6216 Shellcode\u3002<br><strong><a href=\"https:\/\/github.com\/threatexpress\/metatwin\">Meta Twin<\/a><\/strong> \u65e8\u5728\u6210\u4e3a\u4e00\u4e2a\u6587\u4ef6\u8d44\u6e90\u514b\u9686\u5668\u3002\u4ece\u4e00\u4e2a\u6587\u4ef6\u4e2d\u63d0\u53d6\u5143\u6570\u636e\uff08\u5305\u62ec\u6570\u5b57\u7b7e\u540d\uff09\uff0c\u5e76\u5c06\u5176\u6ce8\u5165\u5230\u53e6\u4e00\u4e2a\u6587\u4ef6\u4e2d\u3002<\/p>\n\n\n\n<p class=\"has-small-font-size\"><strong><a href=\"https:\/\/github.com\/mwrlabs\/wePWNise\">WePWNise<\/a><\/strong>\u662f\u4e00\u4e2a\u751f\u6210\u4e0e\u67b6\u6784\u65e0\u5173\u7684VBA\u4ee3\u7801\u7684\u5de5\u5177\uff0c\u53ef\u7528\u4e8eOffice\u6587\u6863\u6216\u6a21\u677f\u4e2d\uff0c\u5e76\u81ea\u52a8\u7ed5\u8fc7\u5e94\u7528\u7a0b\u5e8f\u63a7\u5236\u548c\u6f0f\u6d1e\u5229\u7528\u8f6f\u4ef6\u3002<br><strong><a href=\"https:\/\/github.com\/tyranid\/DotNetToJScript\">DotNetToJScript<\/a><\/strong>\u662f\u4e00\u4e2a\u5de5\u5177\uff0c\u7528\u4e8e\u521b\u5efa\u4ece\u5185\u5b58\u4e2d\u52a0\u8f7d.NET v2\u7a0b\u5e8f\u96c6\u7684JScript\u6587\u4ef6\u3002<br><strong><a href=\"https:\/\/github.com\/cobbr\/PSAmsi\">PSAmsi<\/a><\/strong>\u662f\u4e00\u4e2a\u7528\u4e8e\u5ba1\u8ba1\u548c\u6253\u8d25AMSI\u7b7e\u540d\u7684\u5de5\u5177\u3002<br>\u53cd\u5c04\u5f0fDLL\u6ce8\u5165\u662f\u4e00\u79cd\u5e93\u6ce8\u5165\u6280\u672f\uff0c\u5176\u4e2d\u91c7\u7528\u53cd\u5c04\u5f0f\u7f16\u7a0b\u7684\u6982\u5ff5\uff0c\u5c06\u5e93\u4ece\u5185\u5b58\u52a0\u8f7d\u5230\u4e3b\u673a\u8fdb\u7a0b\u4e2d\u6267\u884c\u3002<br><strong><a href=\"https:\/\/github.com\/CroweCybersecurity\/ps1encode\">ps1encod<\/a><\/strong>e\u7528\u4e8e\u751f\u6210\u548c\u7f16\u7801\u57fa\u4e8ePowerShell\u7684Metasploit\u6709\u6548\u8f7d\u8377\u3002<br><strong><a href=\"https:\/\/github.com\/3gstudent\/Worse-PDF\">Worse PDF<\/a><\/strong>\u5c06\u666e\u901a\u7684PDF\u6587\u4ef6\u8f6c\u6362\u4e3a\u6076\u610f\u6587\u4ef6\u3002\u7528\u4e8e\u4eceWindows\u673a\u5668\u4e2d\u7a83\u53d6Net-NTLM\u54c8\u5e0c\u3002<br><strong><a href=\"https:\/\/github.com\/hlldz\/SpookFlare\">SpookFlare<\/a><\/strong>\u63d0\u4f9b\u4e86\u4e00\u4e2a\u4e0d\u540c\u7684\u7ed5\u8fc7\u5b89\u5168\u63aa\u65bd\u7684\u89c6\u89d2\uff0c\u4f7f\u60a8\u6709\u673a\u4f1a\u7ed5\u8fc7\u5ba2\u6237\u7aef\u68c0\u6d4b\u548c\u7f51\u7edc\u4fa7\u68c0\u6d4b\u7684\u7ec8\u7aef\u5bf9\u7b56\u3002<br><strong><a href=\"https:\/\/github.com\/GreatSCT\/GreatSCT\">GreatSCT<\/a><\/strong>\u662f\u4e00\u4e2a\u5f00\u6e90\u9879\u76ee\uff0c\u7528\u4e8e\u751f\u6210\u5e94\u7528\u7a0b\u5e8f\u767d\u540d\u5355\u7ed5\u8fc7\u3002\u8be5\u5de5\u5177\u65e8\u5728\u4f9b\u7ea2\u961f\u548c\u84dd\u961f\u4f7f\u7528\u3002<br><strong><a href=\"https:\/\/github.com\/Ben0xA\/nps\">nps<\/a><\/strong>\u5728\u6ca1\u6709PowerShell\u7684\u60c5\u51b5\u4e0b\u8fd0\u884cPowerShell\u3002<br><strong><a href=\"https:\/\/github.com\/r00t-3xp10it\/Meterpreter_Paranoid_Mode-SSL\">Meterpreter_Paranoid_Mode.sh<\/a><\/strong>\u5141\u8bb8\u7528\u6237\u901a\u8fc7\u68c0\u67e5\u8fde\u63a5\u5230\u7684\u5904\u7406\u7a0b\u5e8f\u7684\u8bc1\u4e66\u6765\u4fdd\u62a4\u4ed6\u4eec\u7684\u5206\u6bb5\/\u65e0\u5206\u6bb5\u8fde\u63a5\u7684Meterpreter\u3002<br><strong><a href=\"https:\/\/github.com\/secretsquirrel\/the-backdoor-factory\">\u540e\u95e8\u5de5\u5382\uff08BDF\uff09<\/a><\/strong>\u65e8\u5728\u4f7f\u7528\u7528\u6237\u6240\u9700\u7684shellcode\u5bf9\u53ef\u6267\u884c\u6587\u4ef6\u8fdb\u884c\u8865\u4e01\u4fee\u8865\uff0c\u5e76\u7ee7\u7eed\u6267\u884c\u5148\u524d\u4fee\u8865\u7684\u72b6\u6001\u3002<br><strong><a href=\"https:\/\/github.com\/khr0x40sh\/MacroShop\">MacroShop<\/a><\/strong>\u662f\u4e00\u7ec4\u811a\u672c\uff0c\u53ef\u5e2e\u52a9\u901a\u8fc7Office\u5b8f\u4ea4\u4ed8\u6709\u6548\u8f7d\u8377\u3002<br><strong><a href=\"https:\/\/github.com\/leechristensen\/UnmanagedPowerShell\">UnmanagedPowerShell<\/a><\/strong>\u4ece\u975e\u6258\u7ba1\u8fdb\u7a0b\u6267\u884cPowerShell\u3002<br><strong><a href=\"https:\/\/gitlab.com\/initstring\/evil-ssdp\">evil-ssdp<\/a><\/strong>\u6b3a\u9a97SSDP\u56de\u590d\uff0c\u4ee5\u7a83\u53d6\u7f51\u7edc\u4e2d\u7684NTLM\u54c8\u5e0c\u3002\u521b\u5efa\u4e00\u4e2a\u865a\u5047\u7684UPNP\u8bbe\u5907\uff0c\u6b3a\u9a97\u7528\u6237\u8bbf\u95ee\u6076\u610f\u7684\u7f51\u7edc\u9493\u9c7c\u9875\u9762\u3002<br><strong><a href=\"https:\/\/github.com\/Genetic-Malware\/Ebowla\">Ebowla<\/a><\/strong>\u7528\u4e8e\u751f\u6210\u73af\u5883\u952e\u5165\u7684\u6709\u6548\u8f7d\u8377\u7684\u6846\u67b6\u3002<br><strong><a href=\"https:\/\/github.com\/DidierStevens\/DidierStevensSuite\/blob\/master\/make-pdf-embedded.py\">make-pdf-embedded<\/a><\/strong>\u662f\u4e00\u4e2a\u5de5\u5177\uff0c\u7528\u4e8e\u521b\u5efa\u4e00\u4e2a\u5305\u542b\u5d4c\u5165\u6587\u4ef6\u7684PDF\u6587\u6863\u3002<br><strong><a href=\"https:\/\/github.com\/govolution\/avet\">avet<\/a><\/strong>\uff08AntiVirusEvasionTool\uff09\u9488\u5bf9\u4f7f\u7528\u4e0d\u540c\u7684\u9003\u907f\u6280\u672f\u7684\u53ef\u6267\u884c\u6587\u4ef6\u7684Windows\u673a\u5668\u3002<br><a href=\"https:\/\/github.com\/outflanknl\/EvilClippy\"><strong>EvilClippy<\/strong><\/a>\u662f\u4e00\u4e2a\u8de8\u5e73\u53f0\u7684\u52a9\u624b\uff0c\u7528\u4e8e\u521b\u5efa\u6076\u610f\u7684MS Office\u6587\u6863\u3002\u53ef\u4ee5\u9690\u85cfVBA\u5b8f\uff0c\u8df5\u8e0fVBA\u4ee3\u7801\uff08\u901a\u8fc7P-Code\uff09\u5e76\u6df7\u6dc6\u5b8f\u5206\u6790\u5de5\u5177\u3002\u5728Linux\uff0cOSX\u548cWindows\u4e0a\u8fd0\u884c\u3002<br><strong><a href=\"https:\/\/github.com\/d35ha\/CallObfuscator\">CallObfuscator<\/a><\/strong>\u4ece\u9759\u6001\u5206\u6790\u5de5\u5177\u548c\u8c03\u8bd5\u5668\u4e2d\u6df7\u6dc6Windows API\u3002<br><strong><a href=\"https:\/\/github.com\/TheWover\/donut\">Donut<\/a><\/strong>\u662f\u4e00\u4e2a\u751f\u6210Shellcode\u7684\u5de5\u5177\uff0c\u53ef\u4ece.NET\u7a0b\u5e8f\u96c6\u4e2d\u521b\u5efa\u72ec\u7acb\u4e8e\u4f4d\u7f6e\u7684Shellcode\u6709\u6548\u8f7d\u8377\u3002\u6b64Shellcode\u53ef\u7528\u4e8e\u5c06\u7a0b\u5e8f\u96c6\u6ce8\u5165\u4efb\u610fWindows\u8fdb\u7a0b\u3002<\/p>\n\n\n\n<p class=\"has-large-font-size\"><strong>\u4e09\u3001\u4ea4\u4ed8\uff08Delivery\uff09<\/strong><\/p>\n\n\n\n<p class=\"has-medium-font-size\"><strong>1.\u9493\u9c7c\uff08Phishing\uff09<\/strong><\/p>\n\n\n\n<p><strong><a href=\"https:\/\/github.com\/securestate\/king-phisher\">King Phisher<\/a><\/strong>\u662f\u4e00\u4e2a\u5de5\u5177\uff0c\u7528\u4e8e\u6a21\u62df\u771f\u5b9e\u7684\u9493\u9c7c\u653b\u51fb\u6765\u6d4b\u8bd5\u548c\u63d0\u9ad8\u7528\u6237\u610f\u8bc6\u3002<br><strong><a href=\"https:\/\/github.com\/Raikia\/FiercePhish\">FiercePhish<\/a><\/strong>\u662f\u4e00\u4e2a\u5b8c\u6574\u7684\u9493\u9c7c\u6846\u67b6\uff0c\u7528\u4e8e\u7ba1\u7406\u6240\u6709\u7684\u9493\u9c7c\u6d3b\u52a8\u3002\u5b83\u5141\u8bb8\u60a8\u8ddf\u8e2a\u4e0d\u540c\u7684\u9493\u9c7c\u6d3b\u52a8\uff0c\u5b89\u6392\u53d1\u9001\u7535\u5b50\u90ae\u4ef6\u7b49\u7b49\u3002<br><strong><a href=\"https:\/\/github.com\/fireeye\/ReelPhish\/\">ReelPhish<\/a><\/strong>\u662f\u4e00\u4e2a\u5b9e\u65f6\u53cc\u56e0\u7d20\u8ba4\u8bc1\u9493\u9c7c\u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/gophish\/gophish\">Gophish<\/a><\/strong>\u662f\u4e00\u4e2a\u5f00\u6e90\u7684\u9493\u9c7c\u5de5\u5177\u5305\uff0c\u65e8\u5728\u4e3a\u4f01\u4e1a\u548c\u6e17\u900f\u6d4b\u8bd5\u4eba\u5458\u63d0\u4f9b\u5feb\u901f\u3001\u7b80\u4fbf\u7684\u8bbe\u7f6e\u548c\u6267\u884c\u9493\u9c7c\u6d3b\u52a8\u548c\u5b89\u5168\u610f\u8bc6\u57f9\u8bad\u7684\u80fd\u529b\u3002<br><strong><a href=\"https:\/\/github.com\/ustayready\/CredSniper\">CredSniper<\/a><\/strong>\u662f\u4e00\u4e2a\u7528Python\u5fae\u6846\u67b6Flask\u548cJinja2\u6a21\u677f\u7f16\u5199\u7684\u9493\u9c7c\u6846\u67b6\uff0c\u652f\u6301\u6355\u83b72FA\u4ee4\u724c\u3002<br><strong><a href=\"https:\/\/github.com\/fireeye\/PwnAuth\">PwnAuth<\/a><\/strong>\u662f\u4e00\u4e2a\u7528\u4e8e\u542f\u52a8\u548c\u7ba1\u7406OAuth\u6ee5\u7528\u6d3b\u52a8\u7684Web\u5e94\u7528\u7a0b\u5e8f\u6846\u67b6\u3002<br><strong><a href=\"https:\/\/github.com\/pentestgeek\/phishing-frenzy\">Phishing Frenzy<\/a><\/strong> Ruby on Rails\u9493\u9c7c\u6846\u67b6\u3002<br><strong><a rel=\"noreferrer noopener\" href=\"https:\/\/github.com\/L4bF0x\/PhishingPretexts\" target=\"_blank\">Phishing Pretexts<\/a><\/strong>\u00a0\u662f\u4e00\u5957\u53ef\u7528\u4e8e\u653b\u51fb\u6027\u9493\u9c7c\u6d3b\u52a8\u7684\u501f\u53e3\u5e93\u3002<br><strong><a href=\"https:\/\/github.com\/drk1wi\/Modlishka\">Modlishka<\/a><\/strong>\u662f\u4e00\u4e2a\u7075\u6d3b\u548c\u5f3a\u5927\u7684\u53cd\u5411\u4ee3\u7406\uff0c\u5c06\u4f7f\u60a8\u7684\u4f26\u7406\u9493\u9c7c\u6d3b\u52a8\u8fbe\u5230\u65b0\u7684\u6c34\u5e73\u3002<br><strong><a href=\"https:\/\/github.com\/kgretzky\/evilginx2\">Evilginx2<\/a><\/strong>\u662f\u4e00\u4e2a\u4e2d\u95f4\u4eba\u653b\u51fb\u6846\u67b6\uff0c\u7528\u4e8e\u9493\u9c7c\u4efb\u4f55Web\u670d\u52a1\u7684\u51ed\u636e\u548c\u4f1a\u8bddcookie\u3002<\/p>\n\n\n\n<p class=\"has-medium-font-size\"><strong>2.\u6c34\u5751\u653b\u51fb\uff08Watering Hole Attack\uff09<\/strong><\/p>\n\n\n\n<p><strong><a href=\"https:\/\/github.com\/beefproject\/beef\">BeEF<\/a><\/strong>\u662fThe Browser Exploitation Framework\u7684\u7f29\u5199\u3002\u5b83\u662f\u4e00\u79cd\u9488\u5bf9Web\u6d4f\u89c8\u5668\u7684\u6e17\u900f\u6d4b\u8bd5\u5de5\u5177\uff0c\u7528\u4e8e\u8fdb\u884c\u6c34\u5751\u653b\u51fb\u3002<\/p>\n\n\n\n<p class=\"has-large-font-size\"><strong>\u56db\u3001\u547d\u4ee4\u548c\u63a7\u5236\uff08Command and Control\uff09<\/strong><\/p>\n\n\n\n<p class=\"has-medium-font-size\"><strong>1.\u8fdc\u7a0b\u8bbf\u95ee\u5de5\u5177\uff08Remote Access Tools\uff09<\/strong><\/p>\n\n\n\n<p><strong><a href=\"https:\/\/cobaltstrike.com\/\">Cobalt Strike <\/a><\/strong>\u662f\u4e00\u6b3e\u7528\u4e8e\u5bf9\u6297\u4eff\u771f\u548c\u7ea2\u961f\u884c\u52a8\u7684\u8f6f\u4ef6\u3002<br><strong><a href=\"https:\/\/github.com\/EmpireProject\/Empire\">Empire<\/a><\/strong> \u662f\u4e00\u4e2a\u540e\u6e17\u900f\u6846\u67b6\uff0c\u5305\u62ec\u4e00\u4e2a\u7eaf\u7cb9\u7684 PowerShell2.0 Windows \u4ee3\u7406\u7a0b\u5e8f\u548c\u4e00\u4e2a\u7eaf Python 2.6\/2.7 Linux\/OS X \u4ee3\u7406\u7a0b\u5e8f\u3002<br><strong><a href=\"https:\/\/github.com\/rapid7\/metasploit-framework\">Metasploit Framework<\/a><\/strong> \u662f\u4e00\u4e2a\u8ba1\u7b97\u673a\u5b89\u5168\u9879\u76ee\uff0c\u63d0\u4f9b\u6709\u5173\u5b89\u5168\u6f0f\u6d1e\u7684\u4fe1\u606f\uff0c\u5e76\u5e2e\u52a9\u8fdb\u884c\u6e17\u900f\u6d4b\u8bd5\u548c IDS \u7b7e\u540d\u5f00\u53d1\u3002<br><strong><a href=\"https:\/\/github.com\/byt3bl33d3r\/SILENTTRINITY\">SILENTTRINITY<\/a><\/strong> \u662f\u4e00\u4e2a\u7531 Python\u3001IronPython\u3001C#\/.NET \u63d0\u4f9b\u652f\u6301\u7684\u540e\u6e17\u900f\u4ee3\u7406\u7a0b\u5e8f\u3002<br><strong><a href=\"https:\/\/github.com\/n1nj4sec\/pupy\">Pupy<\/a><\/strong> \u662f\u4e00\u4e2a\u5f00\u6e90\u3001\u8de8\u5e73\u53f0\uff08Windows\u3001Linux\u3001OSX\u3001Android\uff09\u7684\u8fdc\u7a0b\u7ba1\u7406\u548c\u540e\u6e17\u900f\u5de5\u5177\uff0c\u4e3b\u8981\u4f7f\u7528 Python \u7f16\u5199\u3002<br><strong><a href=\"https:\/\/github.com\/zerosum0x0\/koadic\">Koadic<\/a><\/strong> \u6216 COM Command &amp; Control\uff0c\u662f\u4e00\u6b3e\u7c7b\u4f3c\u4e8e Meterpreter \u548c Powershell Empire \u7684 Windows \u540e\u6e17\u900f Rootkit \u5de5\u5177\u3002<br><strong><a href=\"https:\/\/github.com\/nettitude\/PoshC2_Python\">PoshC2<\/a><\/strong> \u662f\u4e00\u4e2a\u5b8c\u5168\u4f7f\u7528 PowerShell \u7f16\u5199\u7684\u4ee3\u7406\u611f\u77e5 C2 \u6846\u67b6\uff0c\u7528\u4e8e\u5e2e\u52a9\u6e17\u900f\u6d4b\u8bd5\u4eba\u5458\u8fdb\u884c\u7ea2\u961f\u6d4b\u8bd5\u3001\u540e\u6e17\u900f\u548c\u6a2a\u5411\u79fb\u52a8\u3002<br><strong><a href=\"https:\/\/github.com\/Ne0nd0g\/merlin\">Merlin<\/a><\/strong> \u662f\u4e00\u4e2a\u8de8\u5e73\u53f0\u7684\u540e\u6e17\u900f HTTP\/2 \u547d\u4ee4\u548c\u63a7\u5236\u670d\u52a1\u5668\u548c\u4ee3\u7406\uff0c\u4f7f\u7528 Golang \u7f16\u5199\u3002<br><strong><a href=\"https:\/\/github.com\/quasar\/QuasarRAT\">Quasar<\/a><\/strong> \u662f\u4e00\u4e2a\u5feb\u901f\u4e14\u8f7b\u91cf\u7ea7\u7684\u8fdc\u7a0b\u7ba1\u7406\u5de5\u5177\uff0c\u4f7f\u7528 C# \u7f16\u5199\u3002\u63d0\u4f9b\u9ad8\u5ea6\u7a33\u5b9a\u6027\u548c\u6613\u4e8e\u4f7f\u7528\u7684\u7528\u6237\u754c\u9762\uff0c\u662f\u60a8\u7684\u5b8c\u7f8e\u8fdc\u7a0b\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\u3002<br><strong><a href=\"https:\/\/github.com\/cobbr\/Covenant\">Covenant<\/a><\/strong> \u662f\u4e00\u4e2a .NET \u547d\u4ee4\u548c\u63a7\u5236\u6846\u67b6\uff0c\u65e8\u5728\u7a81\u51fa .NET \u7684\u653b\u51fb\u9762\uff0c\u4f7f\u4f7f\u7528\u653b\u51fb\u578b .NET \u6280\u672f\u66f4\u52a0\u5bb9\u6613\uff0c\u5e76\u4f5c\u4e3a\u7ea2\u961f\u4eba\u5458\u7684\u534f\u4f5c\u547d\u4ee4\u548c\u63a7\u5236\u5e73\u53f0\u3002<br><strong><a href=\"https:\/\/github.com\/FactionC2\/\">FactionC2<\/a><\/strong> \u662f\u4e00\u4e2a C2 \u6846\u67b6\uff0c\u4f7f\u7528\u57fa\u4e8e WebSockets \u7684 API\uff0c\u5141\u8bb8\u4e0e\u4ee3\u7406\u548c\u4f20\u8f93\u4ea4\u4e92\u3002<br><strong><a href=\"https:\/\/github.com\/iagox86\/dnscat2\">DNScat2<\/a><\/strong> \u5de5\u5177\u65e8\u5728\u901a\u8fc7 DNS \u534f\u8bae\u521b\u5efa\u52a0\u5bc6\u7684\u547d\u4ee4\u548c\u63a7\u5236\uff08C&amp;C\uff09\u4fe1\u9053\u3002<br><strong><a href=\"https:\/\/github.com\/BishopFox\/sliver\">Sliver<\/a><\/strong> \u662f\u4e00\u4e2a\u901a\u7528\u7684\u8de8\u5e73\u53f0\u690d\u5165\u6846\u67b6\uff0c\u652f\u6301 C2 \u901a\u8fc7 Mutual-TLS\u3001HTTP(S) \u548c DNS\u3002<br><a href=\"https:\/\/github.com\/Marten4n6\/EvilOSX\"><strong>EvilOSX<\/strong><\/a> \u662f\u4e00\u6b3e\u7528\u4e8e macOS \/ OS X \u7684\u6076\u610f\u8fdc\u7a0b\u7ba1\u7406\u5de5\u5177\uff08RAT\uff09\u3002<br><a href=\"https:\/\/github.com\/neoneggplant\/EggShell\"><strong>EggShell<\/strong><\/a> \u662f\u4e00\u4e2a\u4f7f\u7528 Python \u7f16\u5199\u7684\u540e\u6e17\u900f\u76d1\u89c6\u5de5\u5177\uff0c\u5b83\u63d0\u4f9b\u4e86\u60a8\u548c\u76ee\u6807\u673a\u5668\u4e4b\u95f4\u7684\u547d\u4ee4\u884c\u4f1a\u8bdd\u548c\u989d\u5916\u7684\u529f\u80fd\u3002<br><a href=\"https:\/\/github.com\/byt3bl33d3r\/gcat\"><strong>Gcat<\/strong><\/a> \u662f\u4e00\u6b3e\u9690\u853d\u7684\u57fa\u4e8e Python \u7684\u540e\u95e8\u7a0b\u5e8f\uff0c\u4f7f\u7528 Gmail \u4f5c\u4e3a\u547d\u4ee4\u548c\u63a7\u5236\u670d\u52a1\u5668\u3002<br><a href=\"https:\/\/github.com\/trustedsec\/trevorc2\"><strong>TrevorC2<\/strong><\/a> \u662f\u4e00\u4e2a\u5408\u6cd5\u7684\u7f51\u7ad9\uff08\u53ef\u6d4f\u89c8\uff09\uff0c\u7528\u4e8e\u96a7\u9053\u5316\u5ba2\u6237\u7aef\/\u670d\u52a1\u5668\u901a\u4fe1\uff0c\u4ee5\u8fdb\u884c\u9690\u853d\u547d\u4ee4\u6267\u884c\u3002<\/p>\n\n\n\n<p class=\"has-medium-font-size\"><strong>2.\u90e8\u7f72\uff08Staging\uff09<\/strong><\/p>\n\n\n\n<p><strong><a href=\"https:\/\/github.com\/obscuritylabs\/RAI\">\u5feb\u901f\u653b\u51fb\u57fa\u7840\u8bbe\u65bd\uff08RAI\uff09<\/a><\/strong>\u7ea2\u961f\u57fa\u7840\u8bbe\u65bd\u2026\u2026\u5feb\u901f\u2026\u2026\u7b80\u5316 \u901a\u5e38\uff0c\u7ea2\u961f\u64cd\u4f5c\u6700\u7e41\u7410\u7684\u9636\u6bb5\u4e4b\u4e00\u5c31\u662f\u57fa\u7840\u8bbe\u65bd\u8bbe\u7f6e\u3002\u8fd9\u901a\u5e38\u5305\u62ec\u56e2\u961f\u670d\u52a1\u5668\u6216\u63a7\u5236\u5668\u3001\u57df\u540d\u3001\u91cd\u5b9a\u5411\u5668\u548c\u7f51\u7edc\u9493\u9c7c\u670d\u52a1\u5668\u3002<br><a href=\"https:\/\/github.com\/byt3bl33d3r\/Red-Baron\"><strong>Red Baron<\/strong><\/a>\u662f\u4e00\u7ec4Terraform\u6a21\u5757\u548c\u81ea\u5b9a\u4e49\/\u7b2c\u4e09\u65b9\u63d0\u4f9b\u8005\uff0c\u65e8\u5728\u81ea\u52a8\u521b\u5efa\u5177\u6709\u5f39\u6027\u3001\u4e00\u6b21\u6027\u3001\u5b89\u5168\u548c\u654f\u6377\u57fa\u7840\u8bbe\u65bd\u7684\u7ea2\u961f\u3002<br><a href=\"https:\/\/github.com\/UndeadSec\/EvilURL\"><strong>EvilURL<\/strong><\/a> \u751f\u6210Unicode\u6076\u610f\u57df\u540d\uff0c\u7528\u4e8eIDN Homograph\u653b\u51fb\u5e76\u68c0\u6d4b\u5b83\u4eec\u3002<br><a href=\"https:\/\/github.com\/threatexpress\/domainhunter\"><strong>Domain Hunter<\/strong><\/a>\u68c0\u67e5\u8fc7\u671f\u7684\u57df\u540d\u3001\u84dd\u76fe\u5206\u7c7b\u548cArchive.org\u5386\u53f2\u8bb0\u5f55\uff0c\u4ee5\u786e\u5b9a\u7528\u4e8e\u7f51\u7edc\u9493\u9c7c\u548cC2\u57df\u540d\u7684\u826f\u597d\u5019\u9009\u8005\u3002<br><a href=\"https:\/\/github.com\/mdsecactivebreach\/PowerDNS\"><strong>PowerDNS<\/strong><\/a>\u662f\u4e00\u4e2a\u7b80\u5355\u7684\u6982\u5ff5\u9a8c\u8bc1\uff0c\u6f14\u793a\u4ec5\u4f7f\u7528DNS\u6267\u884cPowerShell\u811a\u672c\u3002<br><a href=\"https:\/\/github.com\/mdsecactivebreach\/Chameleon\"><strong>Chameleon<\/strong><\/a>\u662f\u4e00\u4e2a\u7528\u4e8e\u56de\u907f\u4ee3\u7406\u5206\u7c7b\u7684\u5de5\u5177\u3002<br><a href=\"https:\/\/github.com\/Mr-Un1k0d3r\/CatMyFish\"><strong>CatMyFish<\/strong><\/a>\u641c\u7d22\u53ef\u7528\u4e8e\u7ea2\u961f\u64cd\u4f5c\u7684\u5206\u7c7b\u57df\u540d\u3002\u5b8c\u7f8e\u5730\u8bbe\u7f6e\u767d\u540d\u5355\u57df\u540d\uff0c\u7528\u4e8e\u60a8\u7684Cobalt Strike\u4fe1\u6807C&amp;C\u3002<br><a href=\"https:\/\/github.com\/rsmudge\/Malleable-C2-Profiles\"><strong>Malleable C2<\/strong><\/a>\u662f\u4e00\u79cd\u7279\u5b9a\u4e8e\u57df\u7684\u8bed\u8a00\uff0c\u7528\u4e8e\u91cd\u65b0\u5b9a\u4e49Beacon\u901a\u4fe1\u4e2d\u7684\u6307\u6807\u3002<br><a href=\"https:\/\/github.com\/bluscreenofjeff\/Malleable-C2-Randomizer\"><strong>Malleable-C2-Randomizer<\/strong><\/a>\u8fd9\u4e2a\u811a\u672c\u901a\u8fc7\u4f7f\u7528\u5143\u8bed\u8a00\u968f\u673a\u5316Cobalt Strike Malleable C2\u914d\u7f6e\u6587\u4ef6\uff0c\u5e0c\u671b\u51cf\u5c11\u6807\u5fd7\u57fa\u4e8e\u7b7e\u540d\u7684\u68c0\u6d4b\u63a7\u5236\u7684\u673a\u4f1a\u3002<br>FindFrontableDomains\u641c\u7d22\u6f5c\u5728\u7684\u53ef\u5728\u524d\u7aef\u4f7f\u7528\u7684\u57df\u540d\u3002<br>Postfix-Server-Setup\u8bbe\u7f6e\u7f51\u7edc\u9493\u9c7c\u670d\u52a1\u5668\u662f\u4e00\u4e2a\u975e\u5e38\u6f2b\u957f\u548c\u7e41\u7410\u7684\u8fc7\u7a0b\u3002\u5b83\u53ef\u80fd\u9700\u8981\u51e0\u4e2a\u5c0f\u65f6\u6765\u8bbe\u7f6e\uff0c\u5e76\u53ef\u80fd\u5728\u51e0\u5206\u949f\u5185\u88ab\u653b\u7834\u3002<br>DomainFrontingLists\u662f\u4e00\u4e2aCDN\u5217\u8868\uff0c\u5217\u51fa\u4e86\u53ef\u7528\u4e8e\u57df\u524d\u7f6e\u7684\u57df\u540d\u3002<br>Apache2-Mod-Rewrite-Setup\u5feb\u901f\u5728\u60a8\u7684\u57fa\u7840\u8bbe\u65bd\u4e2d\u5b9e\u65bdMod-Rewrite\u3002<br>mod_rewrite\u89c4\u5219\u7528\u4e8e\u56de\u907f\u4f9b\u5e94\u5546\u6c99\u7bb1\u3002<br>external_c2\u6846\u67b6\u662f\u4e00\u4e2a\u4e0eCobalt Strike\u7684\u5916\u90e8C2\u4e00\u8d77\u4f7f\u7528\u7684Python\u6846\u67b6\u3002<br>Malleable-C2-Profiles\u662f\u4f7f\u7528Cobalt Strike\u7684\u4e0d\u540c\u9879\u76ee\u4e2d\u4f7f\u7528\u7684\u914d\u7f6e\u6587\u4ef6\u96c6\u5408\u3002<br>ExternalC2\u662f\u4e00\u4e2a\u5e93\uff0c\u7528\u4e8e\u5c06\u901a\u4fe1\u6e20\u9053\u4e0eCobalt Strike External C2\u670d\u52a1\u5668\u96c6\u6210\u3002<br>cs2modrewrite\u662f\u5c06Cobalt Strike\u914d\u7f6e\u6587\u4ef6\u8f6c\u6362\u4e3amodrewrite\u811a\u672c\u7684\u5de5\u5177\u3002<br>e2modrewrite\u662f\u5c06Empire\u914d\u7f6e\u6587\u4ef6\u8f6c\u6362\u4e3aApache modrewrite\u811a\u672c\u7684\u5de5\u5177\u3002<br>redi\u662f\u4e00\u4e2a\u81ea\u52a8\u5316\u811a\u672c\uff0c\u7528\u4e8e\u8bbe\u7f6eCobaltStrike\u91cd\u5b9a\u5411\u5668\uff08nginx\u53cd\u5411\u4ee3\u7406\uff0cletsencrypt\uff09\u3002<br>cat-sites\u662f\u4e00\u4e2a\u5206\u7c7b\u7f51\u7ad9\u7684\u5e93\u3002<br>ycsm\u662f\u4e00\u4e2a\u5feb\u901f\u811a\u672c\u5b89\u88c5\u7a0b\u5e8f\uff0c\u7528\u4e8e\u4f7f\u7528nginx\u53cd\u5411\u4ee3\u7406\u548cletsencrypt\u5efa\u7acb\u5f39\u6027\u91cd\u5b9a\u5411\u5668\uff0c\u5e76\u4e0e\u4e00\u4e9b\u5e38\u89c1\u7684\u540e\u6e17\u900f\u5de5\u5177\uff08Cobalt Strike\u3001Empire\u3001Metasploit\u3001PoshC2\uff09\u517c\u5bb9\u3002<br>Domain Fronting Google App Engine\u3002<br>DomainFrontDiscover\u662f\u67e5\u627e\u53ef\u8fdb\u884c\u57df\u524d\u7f6e\u7684CloudFront\u57df\u7684\u811a\u672c\u548c\u7ed3\u679c\u3002<br>Automated Empire Infrastructure<br>\u4f7f\u7528NGINX\u63d0\u4f9b\u968f\u673a\u8d1f\u8f7d\u3002<br>meek\u662fTor\u7684\u4e00\u79cd\u6297\u963b\u585e\u63d2\u4ef6\u4f20\u8f93\u65b9\u5f0f\u3002\u5b83\u5c06\u6570\u636e\u6d41\u7f16\u7801\u4e3a\u4e00\u7cfb\u5217HTTPS\u8bf7\u6c42\u548c\u54cd\u5e94\u3002<br>CobaltStrike-ToolKit\u662f\u4e00\u4e9b\u6709\u7528\u7684CobaltStrike\u811a\u672c\u3002<br>mkhtaccess_red\u81ea\u52a8\u751f\u6210\u7528\u4e8e\u4f20\u9012\u8f7d\u8377\u7684HTaccess\u2014\u2014\u81ea\u52a8\u4ece\u5df2\u77e5\u7684\u6c99\u76d2\u516c\u53f8\/\u6765\u6e90\u4e2d\u63d0\u53d6IP\u5730\u5740\/\u7f51\u7edc\u7b49\u4fe1\u606f\uff0c\u5e76\u5c06\u5b83\u4eec\u91cd\u5b9a\u5411\u5230\u826f\u6027\u8d1f\u8f7d\u3002<br>RedFile\u662f\u4e00\u4e2a\u57fa\u4e8eflask wsgi\u7684\u5e94\u7528\u7a0b\u5e8f\uff0c\u5177\u6709\u667a\u80fd\u6027\u7684\u6587\u4ef6\u670d\u52a1\uff0c\u975e\u5e38\u9002\u5408\u63d0\u4f9b\u6761\u4ef6\u5316\u7684RedTeam\u8d1f\u8f7d\u3002<br>keyserver\u8f7b\u677e\u5730\u4e3aHTTP\u548cDNS\u5bc6\u94a5\u63d0\u4f9b\u670d\u52a1\uff0c\u4ee5\u8fdb\u884c\u6b63\u786e\u7684\u8d1f\u8f7d\u4fdd\u62a4\u3002<br>DoHC2\u5141\u8bb8\u901a\u8fc7DNS over HTTPS\uff08DoH\uff09\u5229\u7528Ryan Hanson\u7684ExternalC2\u5e93\u8fdb\u884c\u547d\u4ee4\u548c\u63a7\u5236\uff08C2\uff09\u3002\u8fd9\u662f\u4e3a\u6d41\u884c\u7684\u5bf9\u6297\u4eff\u771f\u548c\u7ea2\u961f\u64cd\u4f5c\u8f6f\u4ef6Cobalt Strike\u6784\u5efa\u7684\u3002<br>HTran\u662f\u4e00\u4e2a\u8fde\u63a5\u53cd\u5f39\u7a0b\u5e8f\uff0c\u4e00\u79cd\u4ee3\u7406\u670d\u52a1\u5668\u3002\u5728\u4e92\u8054\u7f51\u4e0a\u7684\u4efb\u4f55\u4e00\u4e2a\u4f4d\u7f6e\uff0c\u90fd\u53ef\u4ee5\u5c06\u201c\u76d1\u542c\u5668\u201d\u7a0b\u5e8f\u6084\u6084\u5730\u5165\u4fb5\u5230\u4e0d\u77e5\u60c5\u7684\u4e3b\u673a\u4e0a\u3002<\/p>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u6211\u4eec\u5728\u8fd9\u91cc\u5e26\u6765\u4e86\u4e00\u7cfb\u5217\u5f00\u6e90\u548c\u5546\u4e1a\u7ea2\u961f\u5de5\u5177\uff0c\u8fd9\u4e9b\u5de5\u5177\u6709\u52a9\u4e8e\u7ea2\u961f\u8fd0\u8425\u3002\u6b64\u5b58\u50a8\u5e93\u5c06\u5e2e\u52a9\u60a8\u5b8c\u6210\u7ea2\u961f\u53c2\u4e0e\u7684\u5927\u90e8\u5206\u5de5\u4f5c\u3002\u60a8 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[94,118,44,342,95,86,103,43],"tags":[101],"class_list":["post-1676","post","type-post","status-publish","format-standard","hentry","category-android","category-github","category-hacking_windows","category-idapro","category-ios","category-kali","category-linux-infoarticle","category-infoarticle","tag-mitre-attck"],"views":4234,"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/posts\/1676","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1676"}],"version-history":[{"count":10,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/posts\/1676\/revisions"}],"predecessor-version":[{"id":1686,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/posts\/1676\/revisions\/1686"}],"wp:attachment":[{"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1676"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1676"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1676"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}