maK-

parameth

This tool can be used to brute discover GET and POST parameters

scantastic-tool

It's bloody scantastic

maK_it-Linux-Rootkit

This is a linux rootkit using many of the techniques described on

reverse-shell-access-kernel-module

This is a kernel module invoked reverse shell proof of concept.

scanomaly-2years

This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping

scanomaly

Generic plugin based web application security fuzzing for anomalies by Slándáil Research Limited

stealthy-Keylogger-lkm

This is a stealthier version of Keylogger-lkm, it introduces hiding techniques and also a command entering option.

fearann

This permutates and fucks with subdomains hard

domaination

This is a very simple/stupid cli tool for doing various things with subdomain lists

mistRust

Learning rust via implementing some stupid simple shellcode droppers

awesome-cve-poc

✍️ A curated list of CVE PoCs.

MBE

Course materials for Modern Binary Exploitation by RPISEC

Red-Team-Infrastructure-Wiki

Wiki to collect Red Team infrastructure hardening resources

Java-Deserialization-Cheat-Sheet

The cheat sheet about Java Deserialization vulnerabilities

scemu

shellcode emulator

dnsvalidator

Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.

exploitation-course

Offensive Software Exploitation Course

graphw00f

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

learning-rust-syntax

Learning the rust syntax from various random resources

OffensiveRust

Rust Weaponization for Red Team Engagements.

OSED

Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)

pts-line-bisect

Fast and lightweight binary search on text files

scanomalyPlaceholder

shellcode-resources

Resources About Shellcode

Shr3dKit

Red Team Tool Kit

weblogicScanner

weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14882、CVE-2020-14883

WindowsExploitationResources

Resources for Windows exploit development

wtf

wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows.

xori

Xori is an automation-ready disassembly and static analysis library for PE32, 32+ and shellcode

zd-team-27-ntxwcz