agent skills for vibe motion

PyInstaller Extractor

The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.

Tool for port forwarding & intranet proxy

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

A python script that finds endpoints in JavaScript files

JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.

Cheap Steam 为您提供 STEAM 与 BUFF 的饰品价格对比数据.

Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands

Impacket is a collection of Python classes for working with network protocols.

PowerSploit - A PowerShell Post-Exploitation Framework

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

信安之路 作者团队维护收集的一些网站地址，供大家学习使用，有好的网站博客请提交给我们，请发送到地址：myh0st@foxmail.com

some tools

RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services.

又一款敏感文件泄漏检测工具

sSocks fork for windows support; original: https://sourceforge.net/projects/ssocks/

linux-kernel-exploits Linux平台提权漏洞集合

Repo for counting stars and contributing. Press F to pay respect to glorious developers.

You Know, For WEB Fuzzing !

阿里云accesskey利用工具

远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

Web path scanner

A little tool to play with Windows security

《蓝眼云盘》(Eyeblue Cloud Storage)

The Python programming language

⏬ Dumb downloader that scrapes the web

Microsoft and GitHub Workers Support 996.ICU