GodzillaNodeJsPayload

Archived security research prototype. No longer maintained.

captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

Automating Host Exploitation with AI

Golang-Gin 框架写的免杀平台，内置分离、捆绑等多种BypassAV方式。

A fake login page for use in a phishing attack

exploit nginx<=1.21.5

免杀框架

GO免杀shellcode加载器混淆AES加密

python免杀shellcode加载器 加密混淆

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

shellcodeloader

远程shellcode加载&权限维持+小功能

UDRL for CS

A root exploit for CVE-2022-0847 (Dirty Pipe)

POC to replicate the full 'Follina' Office RCE vulnerability for testing purposes

Red Tools 渗透测试

ByPassBehinder / 冰蝎WebShell免杀生成 / Code By:Tas9er

强化fscan的漏扫POC库

一款基于BurpSuite的被动式shiro检测插件

一款基于BurpSuite的被动式FastJson检测插件

PrintNightmare - Windows Print Spooler RCE/LPE Vulnerability (CVE-2021-34527, CVE-2021-1675) proof of concept exploits

SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications

Exploit and Check Script for CVE 2022-1388

实现动态字典渲染、动态结果判断、自动命中记录、的敏感文件扫描器

SMBGhost (CVE-2020-0796) Automate Exploitation and Detection

fast scan for redtools