Stars
🚨 CVE-2023-45866 - BlueDucky Implementation (Using DuckyScript) 🔓 Unauthenticated Peering Leading to Code Execution (Using HID Keyboard)
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
A huge collection of polybar themes with different styles, colors and variants.
Hyalus desktop client (Windows/macOS/Linux)
A protective and Low Level Shellcode Loader that defeats modern EDR systems.
Receive notifications/alerts on the most recent disclosed CVE's.
DKMC - Dont kill my cat - Malicious payload evasion tool
Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.
Dumping processes using the power of kernel space !
Shell script for testing DNS zone transfer (AXFR query) on domains and subdomains recursively.
An attempt to streamline the Android hardening process from the Tor Blog.
Armis Data Hack 2019 Challenge - Devices Gone Rogue
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.
Vanguards help guard you from getting vanned...
A huge list of alternatives to Google products. Privacy tips, tricks, and links.
FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.
Ladon大型内网渗透扫描器,PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描等。网络资产探测32种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exc…
BypassAV ShellCode Loader (Cobaltstrike/Metasploit)
Threat Hunting with ELK Workshop (InfoSecWorld 2017)
A bridge between Matrix and Discord.