一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.

Notion as a platform for offensive operations

PoC - Authenticated Remote Code Execution in VMware vCenter Server (Exploit)

This tool, programmed in C#, allows for the fast discovery and exploitation of vulnerabilities in MSSQL servers

CVE-2024-37081: Multiple Local Privilege Escalation in VMware vCenter Server

Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework

spring部分漏洞，nacos部分漏洞，禅道认证绕过漏洞

EZ是一款集信息收集、端口扫描、服务暴破、URL爬虫、指纹识别、被动扫描为一体的跨平台漏洞扫描器。

Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.

基于Pocsuite3、goby编写的漏洞poc&exp存档

助力每一位RT队员，快速生成免杀木马

Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode

For when DLLMain is the only way

AV bypass while you sip your Chai!

MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.

SecGPT网络安全大模型

使用 rust 实现的飞连客户端

牧云社区版

A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.

Small, fast tool for performing reverse DNS lookups en masse.

Microsoft-Outlook-Remote-Code-Execution-Vulnerability

A list for Web Security and Code Audit

Jar Analyzer - 一个JAR包分析工具，SCA漏洞分析，批量分析JAR包，方法调用关系搜索，字符串搜索，Spring组件分析，CFG程序分析，JVM栈帧分析，进阶表达式搜索，字节码指令级的动态调试分析，反编译JAR包一键导出，一键提取序列化数据恶意代码，一键分析BCEL字节码

Java漏洞调试分析集合

一款针对用友NC综合漏洞利用工具

A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.

FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log ag…

Gel4y-Mini-Shell-Backdoor-Decode