Stars
shellcode免杀加载器,使用go实现,免杀bypass火绒、360、核晶、def等主流杀软
Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Coba…
Cobalt Strike Malleable C2 Design and Reference Guide
IDApython Scripts for Analyzing Golang Binaries
An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全,具备专业的软件成分分析(SCA)、漏洞检测、专业漏洞库。
Constrain, log and scan your MCP connections for security vulnerabilities.
Code snippets to reproduce MCP tool poisoning attacks.
Fully decrypt App-Bound Encrypted (ABE) cookies, passwords & payment methods from Chromium-based browsers (Chrome, Brave, Edge) - all in user mode, no admin rights required.
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
Scripted Local Linux Enumeration & Privilege Escalation Checks
DataSploit / datasploit
Forked from dvopsway/datasploitAn #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the raw data, and give data in multiple formats.
一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool
Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
📡 PoC auto collect from GitHub.
渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
此项目的POC来源为2024年以来各大威胁情报的高危漏洞复现,POC已通过nuclei或xray武器化,本项目旨在为网络安全爱好者们提供一点参考资料,可供个人研究使用,共勉
1、点击“检测漏洞”,会自动检测该URL是否存在S2-001、S2-005、S2-009、S2-013、S2-016、S2-019、S2-020/021、S2-032、S2-037、DevMode、S2-045/046、S2-052、S2-048、S2-053、S2-057、S2-061、S2相关log4j2十余种漏洞。 2、“批量验证”,(为防止批量geshell,此功能已经删除,并不再开…
Nidhogg is an all-in-one simple to use windows kernel rootkit.
一个漏洞 PoC 知识库。A knowledge base for vulnerability PoCs(Proof of Concept), with 1k+ vulnerabilities.
Nuclei plugin for BurpSuite
月海 (Sea Moon) 是一款 FaaS/BaaS 实现的 Serverless 网络工具
Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
基于C#的微信PC版聊天记录备份工具,提供图形界面,解密微信数据库并导出聊天记录。