#
Lists (12)
Starred repositories
Confluence CVE 2021,2022,2023 利用工具,支持命令执行,哥斯拉,冰蝎 内存马注入
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
Safe Harbor is a BOF that streamlines process reconnaissance for red team operations by identifying trusted, low-noise targets to maintain stealth and robust OPSEC.
Abuse trust-boundaries to bypass firewalls and network controls
Execute commands interactively on remote Windows machines using the WinRM protocol
Run native PE or .NET 8000 executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible
AI Red Teaming playground labs to run AI Red Teaming trainings including infrastructure.
NTLMv2 Hash Leak via COM + Auto-Execution
tiny, portable SOCKS5 server with very moderate resource usage
Utilizng an MCP Server to communicate with your C2
SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
Burp Plugin to Bypass WAFs through the insertion of Junk Data
A proof‑of‑concept C2 framework that uses Server‑Sent Events (SSE) and the MCP protocol for agent registration, command dispatch, and result collection. By tunneling through ngrok, you can quickly …
An even funnier way to disable windows defender. (through WSC api)
Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
An integrated BurpSuite vulnerability detection plug-in.
GXX是一款强大的指纹识别工具,基于YAML配置的规则进行目标系统识别。 本工具支持多种协议(HTTP/HTTPS、TCP、UDP),可进行高效的批量目标扫描和精准识别。
SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.