Extract Windows credentials directly from VM memory snapshots and virtual disks

AI-powered penetration testing assistant using local LLM on linux (Parrot OS)

A Curated list of Security Resources for all connected things

自动化漏洞扫描系统，方便安全测试人员在测试过程中，快速对网站进行信息收集、漏洞扫描，系统采用B/S架构，分为源码部署、虚拟机部署、docker部署，项目会持续更新，欢迎在Issues中提出您在使用过程中遇到的问题和需求，如果项目对您有所帮助，欢迎留下宝贵的star，感谢！！！

红队武器库漏洞利用工具合集整理

VICIdial Unauthenticated SQLi to RCE Exploit (CVE-2024-8503 and CVE-2024-8504)

poc for CVE-2024-38063 (RCE in tcpip.sys)

A tool to recover a fully analyzable .ELF from a raw kernel, through extracting the kernel symbol table (kallsyms)

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

零基础入门V8引擎漏洞挖掘

⚔️Windows11 Penetration Suite Toolkit 🔰 The First Windows Penetration Testing Environment on Mac M Chips

全世界免费代理IP | Free Proxy | https://proxy.010438.xyz

msFuzz is a coverage-guided fuzzer for Windows kernel drivers that utilizes Intel PT and leverages constraint and dependency analysis to guide fuzzing.

Recent Fuzzing Paper

A collection of tools for security research on Starlink's User Terminal

Automation for internal Windows Penetrationtest / AD-Security

WPS Office RCE On 2023-08-10

A wrapper executable that can run any executable as a Windows service, in a permissive license.

The Ultimate Swiss Army Knife for Xray and Sing-box

Conference presentation slides

Escalate Service Account To LocalSystem via Kerberos

ChatGPT资料汇总学习，持续更新......

一个高价值漏洞采集与推送服务 | Collect valueable vulnerabilities and push them to various services

A GPT-Based Fuzz Driver Generator

Same-Architecture Firmware Rehosting and Fuzzing

Some notes and examples for cobalt strike's functionality

PoC for CVE-2022-37032，tested on frr-8.3。

A curated list of awesome OSCP resources

Interact with your documents using the power of GPT, 100% privately, no data leaks