COM ViewLogger — new malware keylogging technique

Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.

Build your own AI friend

somthing about Cobaltstrike

Multilayered AV/EDR Evasion Framework

The Go programming language

The Havoc Framework

notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

"Randar" is an exploit for Minecraft which uses LLL lattice reduction to crack the internal state of an incorrectly reused java.util.Random in the Minecraft server, then works backwards from that t…

The new Windows Terminal and the original Windows console host, all in the same place!

Lovingly referred to as the Swiss Army Knife of PC gaming, Special K does a bit of everything.

WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler

让"WAF绕过"变得简单

Complete list of LPE exploits for Windows (starting from 2023)

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

LLM powered fuzzing via OSS-Fuzz.

Standalone HVNC Client & Server | Coded in C++ (Modified Tinynuke)

library & platform to build, distribute, monetize ai apps that have the full context (like rewind, granola, etc.), open source, 100% local, developer friendly. 24/7 screen, mic, keyboard recording …

Converts PE into a shellcode

Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything that modify attributes. This all includes tools to work with anything in gener…

Exploits Really Simple Security < 9.1.2 authentication bypass (CVE-2024-10924).

ASCII generator (image to text, image to image, video to video)

SQL / SQLI tokenizer parser analyzer

Macro-header for compile-time C obfuscation (tcc, win x86/x64)

Another lightweight C++ JSON library, provided simply as a C++ module.

Find secrets with Gitleaks 🔑

免杀远控木马源码整理开源(银狐 winos 大灰狼 gh0st) Rat

AssetStudio is a tool for exploring, extracting and exporting assets and assetbundles.

Find and fix 400+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.