Go 代码混淆工具，使用 AST (抽象语法树) 技术实现跨文件的代码混淆，同时保证混淆后的代码可编译和可执行。

CVE-2025-38001: Linux HFSC Eltree Use-After-Free - Debian 12 PoC

Toolkit of Projects to attack and evade Event Trace for Windows

PoC for the Untrusted Pointer Dereference in the ks.sys driver

beta

FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本)，主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用

ARL官方仓库备份项目：ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

This repo contains C/C++ snippets that can be handy in specific offensive scenarios.

一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webshell，命令执行或者上传公钥使用SSH免密连接

Collection of various malicious functionality to aid in malware development

A collection of (even more) alternative shellcode callback methods in CSharp

a rep for documenting my study, may be from 0 to 0.1

一次免杀实践（bypass 360、huorong、windows defender、kaspersky、）

SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.

Decrypt Veeam database passwords

从零学习Webshell免杀手册

PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.

Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the white paper Certified Pre-Owned.

FineReport channel Deserialization Vulnerabilities RCE

Java Js Engine Payloads All in one

星火实验室GUI工具框架

A template for projects using both libPeConv and MS Detours

Alternative Shellcode Execution Via Callbacks Rewrite In C#

WebSocket 内存马/Webshell，一种新型内存马/WebShell技术

自己积累的一些Java反序列化利用链

🌴Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

Cloud Exploitation Framework 云环境利用框架，方便安全人员在获得 AK 的后续工作

Primefaces 5.X EL Injection Exploit (CVE-2017-1000486)