Lists (4)
Stars
An open source (GPLv3) deobfuscator and unpacker for Eziriz .NET Reactor
A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.
A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux
Lateral Movement via the .NET Profiler
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
A list of public penetration test reports published by several consulting firms and academic security groups.
🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens
Example code samples from our ScriptBlock Smuggling Blog post
It is a simple python package to play videos in the terminal using characters as pixels
FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Develo…
🎬 A curated list of movies every hacker & cyberpunk must watch.
CVE-2023-34362: MOVEit Transfer Unauthenticated RCE
A collection of proof-of-concept exploit scripts written by the team at Redway Security for various CVEs.
P4wnP1 is a highly customizable USB attack platform, based on a low cost Raspberry Pi Zero or Raspberry Pi Zero W.
MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit
Basic vulnerability scanning to see if web servers may be vulnerable to CVE-2023-44487
This project is an implant framework designed for long term persistent access to Windows machines.
C or BOF file to extract WebKit master key to decrypt user cookie
Injects additional machine instructions into various binary formats.
Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.