PACEJJ27

2021CDN

Albert

The Albert, the smart recon tool.

antispy

AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.

AV_Evasion_Tool

掩日 - 免杀执行器生成工具

AWD_CTF_Platform

一个简单的AWD训练平台

ChromeAppHeroes

🌈谷粒-Chrome插件英雄榜, 为优秀的Chrome插件写一本中文说明书, 让Chrome插件英雄们造福人类~ ChromePluginHeroes, Write a Chinese manual for the excellent Chrome plugin, let the Chrome plugin heroes benefit the human~ 公众号「0加1」同步更新

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com

Cooolis-ms

Cooolis-ms是一个包含了Metasploit Payload Loader、Cobalt Strike External C2 Loader、Reflective DLL injection的代码执行工具，它的定位在于能够在静态查杀上规避一些我们将要执行且含有特征的代码，帮助红队人员更方便快捷的从Web容器环境切换到C2环境进一步进行工作。

CVE-2020-0787-EXP-ALL-WINDOWS-VERSION

Support ALL Windows Version

CVE-2020-5902

CVE-2020-5902 BIG-IP

CVE-2021-31166

Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.

DeepCreamPy

Decensoring Hentai with Deep Neural Networks

DemonSeed

DNSExfiltrator

Data exfiltration over DNS request covert channel

exphub

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

fuzzDicts

Web Pentesting Fuzz 字典,一个就够了。

HackSysExtremeVulnerableDriver

HackSys Extreme Vulnerable Windows Driver

herpaderping

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

HRShell

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

my-code

myScripts

一个垃圾桶

nps

一款轻量级、功能强大的内网穿透代理服务器。支持tcp、udp流量转发，支持内网http代理、内网socks5代理，同时支持snappy压缩、站点保护、加密传输、多路复用、header修改等。支持web图形化管理，集成多用户模式。

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

r77-rootkit

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Server

PanDownload的个人维护版本

UltimateAppLockerByPassList

The goal of this repository is to document the most common techniques to bypass AppLocker.

xencrypt

A PowerShell script anti-virus evasion tool

xunfeng

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.