CaledoniaProject

awesome-opensource-security

A list of interesting open-source security tools, mostly reviewed and commented by me.

drivers-binaries

Exploitable drivers, you know what I mean

dll-hijack-code-generator

public-src

非涉密源码

common-bugs-uncommon-exploits

Security testing guide with practical solutions and real-world vulnerability examples

CVE-2023-35001

Pwn2Own Vancouver 2023 Ubuntu LPE exploit

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

AntimalwareBlight

Execute PowerShell code at the antimalware-light protection level.

CaledoniaProject.github.io

public wiki

CanYouCTheThief

A C implementation of the Sektor7 "A Thief" Windows privesc technique.

CVE-2024-38077-POC

原文已被作者删除，备份用，非原创，EXP & POC

docguard-all-samples

drivers_and_shit

enterprise-security-practitioner-guide

A practitioner's guide to enterprise security

FuckJsonp-RCE-CVE-2022-26809-SQL-XSS-FuckJsonp

警惕 一种针对红队的新型溯源手段!

gjson

Get JSON values quickly - JSON parser for Go

go-ora

Pure go oracle client

GrabAccess

Bypass Windows Password And Bitlocker

impacket

Impacket is a collection of Python classes for working with network protocols.

mega.py

Python library for the https://mega.nz/ API.

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

phpggc

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

react-markdown-editor-test

redis-rogue-server

Redis(<=5.0.5) RCE

solidity-patterns

A compilation of patterns and best practices for the smart contract programming language Solidity

tdesktop

Telegram Desktop messaging app

undrop-for-innodb

TwinDB data recovery toolkit for MySQL/InnoDB

vps-dedicated-benchmark

A benchmark against affordable VPS and Dedicated server

xcaddy

Build Caddy with plugins

zkar

ZKar is a Java serialization protocol analysis tool implement in Go.