Proof of Concepts code for Bring Your Own Vulnerable Driver techniques

Internet transparency looking glass

chDB is an in-process OLAP SQL Engine 🚀 powered by ClickHouse

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

使用ai生成多章节的长篇小说，自动衔接上下文、伏笔

备份的漏洞库，3月开始我们来维护

Tool to decrypt App-Bound encrypted keys in Chrome 127+, using the IElevator COM interface with path validation and encryption protections.

Stealthily inject shellcode into an executable

A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization,…

Execute commands in other Sessions

A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue

This repo contains C/C++ snippets that can be handy in specific offensive scenarios.

Useful scripts for WinDbg using the debugger data model

attacker_new

A centralized and enhanced memory analysis platform

ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

MinHash, LSH, LSH Forest, Weighted MinHash, HyperLogLog, HyperLogLog++, LSH Ensemble and HNSW

OSINT tools and more but without API key

trex-core site

Raspberry Pi Self Hosted Server Based on Docker / Portainer.io

收集的文章 https://mrwq.github.io/vulnerability-paper/

Collection of UAC Bypass Techniques Weaponized as BOFs

Simulate the behavior of AV/EDR for malware development training.

Uses ChatGPT API, Bard API, and Llama2, Python-Nmap, DNS Recon, PCAP and JWT recon modules and uses the GPT3 model to create vulnerability reports based on Nmap scan data, and DNS scan information.…

Small toolkit for extracting information and dumping sensitive strings from Windows processes

Deluder is a tool for intercepting traffic of proxy unaware applications. Currently, Deluder supports OpenSSL, GnuTLS, SChannel, WinSock and Linux Sockets out of the box. ⚡

OpenGFW is a flexible, easy-to-use, open source implementation of GFW on Linux