HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

A port scanner written purely in PowerShell.

Powerful asynchronus IPv4 port scanner for PowerShell

Podman: A tool for managing OCI containers and pods.

NVR with realtime local object detection for IP cameras

TCP/UDP port mapping for full-cone NAT

Lightweight binary that joins a device to a Tailscale network and exposes a local SOCKS5 proxy. Designed for red team operations and ephemeral access into restricted environments using Tailscale’s …

Bananas🍌, Cross-Platform screen 🖥️ sharing 📡 made simple ⚡.

🚀2.3x faster than MinIO for 4KB object payloads. RustFS is an open-source, S3-compatible high-performance object storage system supporting migration and coexistence with other S3-compatible platfor…

Digital Bond's ICS Enumeration Tools

Vulnerable server used for learning software exploitation

A shellcode writing toolkit

ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.

Malware Development for Ethical Hackers, published by Packt

用于生成各类免杀webshell

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

Various Cobalt Strike BOFs

Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.

Remote Command Executor: A OSS replacement for PsExec and RunAs - or Telnet without having to install a server. Take your pick :)

A (partial) Python rewriting of PowerSploit's PowerView

Windows 权限提升 BadPotato

SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.

.NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.

Penelope Shell Handler

A platform to create documentation/wiki content built with PHP & Laravel

自动抓取微信公众号安全漏洞文章，转换为Markdown格式并建立本地知识库，每日持续更新。本项目基于 [原版wxvl](https://github.com/20142995/wxvl) 进行扩展。

一款综合性网络安全检测和运维工具，旨在快速资产发现、识别、检测，构建基础资产信息库，协助甲方安全团队或者安全运维人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques.