scanfsec

SharpWxDump

微信客户端取证，可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录))；支持获取多用户信息，不定期更新新版本偏移，目前支持所有新版本、正式版本

mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

suo5

一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool

fuso

一款体积小, 快速, 稳定, 高效, 轻量的内网穿透, 端口转发工具 支持多连接,级联代理,传输加密 (A small volume, fast, stable, efficient, and lightweight intranet penetration, port forwarding tool supports multiple connections, cascading proxy, and transmission encryption)

GodPotato

gsocket

Connect like there is no firewall. Securely.

Shmily

这是一个 ( QQ Wechat 短信 通话记录 照片 等) 记录导出归档的 大 项目.

watchvuln

一个高价值漏洞采集与推送服务 | collect valueable vulnerability and push it

EDRSilencer

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

Chaos-Rootkit

Now You See Me, Now You Don't

shellnoob

A shellcode writing toolkit

GoFileBinder

golang免杀捆绑器

PPLBlade

Protected Process Dumper Tool

azureOutlookC2

Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for North Korean APT InkySquid / ScarCruft / APT37. TTP: Use Microsoft Graph API for C2 Operations.

SharpWeb

一个浏览器数据（密码|历史记录|Cookie|书签|下载记录）的导出工具，支持主流浏览器。

MemFiles

A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk

microwaveo

将dll exe 等转成shellcode 最后输出exe 可定制加载器模板 支持白文件的捆绑 shellcode 加密

CVE-2022-40684

A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager

vagent

多功能 java agent 内存马

CVE-2022-39952

POC for CVE-2022-39952

CallstackSpoofingPOC

C++ self-Injecting dropper based on various EDR evasion techniques.

HeapCrypt

Encypting the Heap while sleeping by hooking and modifying Sleep with our own sleep that encrypts the heap

ActiveMqRCE

用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用 内存马注入

CVE-2021-21974

POC for CVE-2021-21974 VMWare ESXi RCE Exploit

driver_callback_bypass_1909

研究和移除各种内核回调,在anti anti cheat的路上越走越远

CVE-2023-27532

Exploit for CVE-2023-27532 against Veeam Backup & Replication

PTH_Exchange

If you only have hash, you can still operate exchange

ExchangePE

Asset scanning by dictionary stitching Domain to identify Exchange Servers versions

Chrome-V8-RCE-CVE-2021-38003

CVE-2021-38003 exploits extracted from https://twitter.com/WhichbufferArda/status/1609604183535284224

NativePayload_ASM3

NativePayload_ASM/AsynASM , Injecting Meterpreter Payload bytes into local Process via Delegation Technique [Technique D] + in-memory with delay Changing RWX to X [Bypassing AVs]