ASPX网站数据库密码加密存储
https://github.com/aleenzz/InjectSQLServer
https://github.com/GhostPack/Seatbelt
nltest
域环境下常规打法:上传bloodbound客户端搜集域内信息,把结果回传本地后,利用kali的bloodbound服务端解析,分析域内的薄弱环节
【免杀的】横向移动命令执行
https://github.com/rootclay/WMIHACKER
https://github.com/safe6Sec/command
https://mp.weixin.qq.com/s/tqd9jJJv4bmzN6xVdpGDow