psexecsvc - a python implementation of PSExec's native service implementation

📖简易日语学习 / 视觉小说阅读辅助工具

Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks

JNDIExploit or a ysoserial.

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

The Network Execution Tool. Updated version of CrackMapExec, all the hard work and development over the years from everyone in the CrackMapExec.

向日葵密码提取、todesk密码提取，ID、临时密码，安全密码读取工具

Dump cookies and credentials directly from Chrome/Edge process memory

Tunnel TCP connections through a file

内网资产收集、探测主机存活、端口扫描、域控定位、文件搜索、各种服务爆破（SSH、SMB、MsSQL等）、Socks代理，一键自动化+无文件落地扫描

Process Injection using Thread Name

A simple MobaXterm password extraction tool.

一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.

网传nacos_rce漏洞poc

无可执行权限加载 ShellCode。Loading ShellCode without executable permission.

记录一下 Java 安全学习历程，也算是半条学习路线了

A Post Exploitation Tool for High Value Systems

一款后渗透免杀工具，助力每一位像我这样的脚本小子快速实现免杀，支持bypass 360 火绒 Windows Defender

darkPulse是一个用go编写的shellcode Packer，用于生成各种各样的shellcode loader，目前免杀火绒，360，360核晶。

哥斯拉webshell管理工具二次开发规避流量检测设备

一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webshell，命令执行或者上传公钥使用SSH免密连接

Collection of community-driven CodeQL query, library and extension packs

A .NET Runtime for Cobalt Strike's Beacon Object Files

Open repository for learning dynamic shellcode loading (sample in many programming languages)