Arbitrium is a cross-platform, fully undetectable remote access trojan, to control Android, Windows and Linux and doesn't require any firewall exceptions or port forwarding rules
:octocat: Machine Learning for Cyber Security
✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.
Bypass cobaltstrike beacon config scan
Cryfind is a tool to help you find crypto signatures in binary.
DNSpooq - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)
Open-Source Remote Administration Tool For Windows C# (Be Based On AsyncRAT)
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Telegram Bot to get Insider Trading Alerts
Linux evil toolkit is a framework that aims to centralize, standardize and simplify the use of various security tools for pentest professionals. LETK (Linux evil toolkit) has few simple commands, one of which is the INIT that allows you to define a target, and thus use all the tools without typing anything else.
Various capabilities for static malware analysis.
Open EDR public repository
Preparation guide for Offensive Security's PEN-300 course and OSEP certification exam
ICMP流量伪装转发工具 ping tunnel is a tool that advertises tcp/udp/socks5 traffic as icmp traffic for forwarding.
Zero trust system
个人数据泄漏检测网站，适用于 QQ / 京东 / 顺丰 / 微博。
Mimikatz implementation in pure Python
A method of bypassing EDR's active projection DLL's by preventing entry point exection
NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewall, just by the victim visiting a website
Enumerate and disable common sources of telemetry used by AV/EDR.
ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication
metasploit-framework with webui / metasploit-framework 图形界面
一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档