Syscall免杀

Customizable Linux Persistence Tool for Security Research and Detection Engineering.

A fork of AFL for fuzzing Windows binaries

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

x64 binary obfuscator

xp_CAPTCHA_api burp 验证码识别插件 调用接口 准确率更高

朋友圈转发截图生成工具（⚠️Fork 不是收藏，请勿在贡献代码以外的情况下 Fork！）

飞刃是一套完整的企业级黑盒漏洞扫描系统，集成漏洞扫描、漏洞管理、扫描资产、爬虫等服务。 拥有强大的漏洞检测引擎和丰富的插件库，覆盖多种漏洞类型和应用程序框架。

WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）

Gather and update all available and newest CVEs with their PoC.

Bypassing PatchGuard on modern x64 systems

计算机自学指南

本项目集成了全网优秀的攻防武器工具项目，包含自动化利用，子域名、目录扫描、端口扫描等信息收集工具，各大中间件、cms、OA漏洞利用工具，爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。

Injects HTML/PHP/ASP to the PE

著作《Windows APT Warfare：惡意程式前線戰術指南》各章節技術實作之原始碼內容

The Havoc Framework.

OAExploit一款基于产品的一键扫描工具。

利用RPC服务，批量探测内网Windows出网情况

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made w…

Watchdog是bayonet修改版，重新优化了数据库及web及扫描程序,加入多节点

☕️ Java Security，安全编码和代码审计

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Tool for Active Directory Certificate Services enumeration and abuse

Windows Remote Administration Tool that uses Discord, Telegram and GitHub as C2s

基于Java实现的图形化微信聊天记录解密查看器

Small and highly portable detection tests based on MITRE's ATT&CK.

Custom Query list for the Bloodhound GUI based off my cheatsheet

通过jsp脚本扫描java web Filter/Servlet型内存马

SMSBoom - Deprecate: Due to judicial reasons, the repository has been suspended!