d3l7a

linux

Linux kernel source tree

byob

An open-source post-exploitation framework for students, researchers and developers.

exploitdb

The legacy Exploit Database repository - New repo located at https://gitlab.com/exploit-database/exploitdb

linux-kernel-exploits

linux-kernel-exploits Linux平台提权漏洞集合

commix

Automated All-in-One OS Command Injection Exploitation Tool.

EvilOSX

An evil RAT (Remote Administration Tool) for macOS / OS X.

backdoor-apk

backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool, the Android SDK, smali, etc. This shell script is provided as-is without warranty of any kind and is intended for educational purposes only.

evil.sh

:speak_no_evil: Subtle and not-so-subtle shell tweaks that will slowly drive people insane.

Powershell-RAT

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

portspoof

Portspoof

tactical-exploitation

Modern tactical exploitation toolkit.

phishing-frenzy

Ruby on Rails Phishing Framework

CVE-2017-0199

Exploit toolkit CVE-2017-0199 - v4.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft Office RCE. It could generate a malicious RTF/PPSX file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.

Altman

the cross platform webshell tool in .NET

phishlulz

CVE-2017-8759

Exploit toolkit CVE-2017-8759 - v1.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft .NET Framework RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.

EaST

Exploits and Security Tools Framework 2.0.1

RATs

Collection of Remote Administration Tool samples

Windows-SignedBinary

arachni-ui-web

Arachni's Web User Interface.

olefile

olefile is a Python package to parse, read and write Microsoft OLE2 files (also called Structured Storage, Compound File Binary Format or Compound Document File Format), such as Microsoft Office 97-2003 documents, vbaProject.bin in MS Office 2007+ files, Image Composer and FlashPix files, Outlook messages, StickyNotes, several Microscopy file formats, McAfee antivirus quarantine files, etc.

dnsftp

Client/Server scripts to transfer files over DNS. Client scripts are small and only use native tools on the host OS.

phishing-frenzy-templates

Phishing Scenarios Used for Phishing Frenzy

powerstager

A payload stager using PowerShell

minidyndns

A simple DynDNS server with an build in HTTP interface to update IPs

WarChild

War Child denial of service testing suite

raw2vmdk

raw2vmdk is an OS independent Java utility that allows you to mount raw disk images, like images created by "dd", using VMware, VirtualBox or any other virtualization platform supporting the VMDK disk format. It analyzes the raw image and creates an approprietly formatted ".vmdk" file that can be used to mount the image right away.

Spydan

A web spider for shodan.io without using the Developer API.

BatSploit

Exploitation Tool For Windows Using Batch and Powershell