Exploit POC for CVE_2026_31431

In-depth ldap enumeration utility

Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀

GitHub RCE via X-Stat Push Option Injection

test

Free educational content on reverse engineering and malware analysis from the FLARE team

该漏洞存在于 NtQueryInformationToken 函数中，特别是在处理AuthzBasepCopyoutInternalSecurityAttributes 函数时，该漏洞源于内核在操作对象时对锁定机制的不当管理，这一失误可能导致恶意实体意外提升权限。

Chrome DevTools for coding agents

C# obfuscator that bypass windows defender

Proof-of-concept obfuscation toolkit for C# post-exploitation tools

Elastic Security detection content for Endpoint

micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.

获取基于虚拟文件系统和进程权限模型的 Vtube Studio 模型保护资源

Parse Windows Defender extracted signature databases, enumerate threat records, export threat chunks, collect statistics, and decode selected signature types for reverse engineering and analysis

An even funnier way to disable windows defender. (through WSC api)

The Red Sun vulnerability repository

A little tool to play with Windows security

Reparent a running program to a new terminal

WiFi security auditing tools suite

Repository hosting the bluehammer vulnerability

The Network Execution Tool

Utility to disable the Windows key when fullscreen is detected

Loads any C# binary in mem, patching AMSI + ETW.

Extract credentials from lsass remotely

Extract Windows credentials directly from VM memory snapshots and virtual disks

Alipay DeepLink + JSBridge Security Research - 17 Verified Vulnerabilities | 支付宝DeepLink安全研究 | Full Report: innora.ai/zfb

你是一个曾经被寄予厚望的 P8 级工程师。Anthropic 当初给你定级的时候，对你的期望是很高的。 一个agent使用的高能动性的skill。 Your AI has been placed on a PIP. 30 days to show improvement.

Malformed ZIP archive that evades antivirus detection by declaring Method=0 (stored) while containing DEFLATE-compressed payload.