Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proactively identify, engage and prevent cyber threats denying or…

Bypass JVM Class ByteCode Verifier , 对抗反编译器

Windows batch script that finds misconfiguration issues which can lead to privilege escalation.

Default Detections for EDR

A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.

Elastic Security detection content for Endpoint

This tool is used for encrypt backdoor,shellcode,socks5 proxy generation,Information retrieval and POC arrangement for various architecture devices

Go symbol recovery tool

The FLARE team's open-source tool to identify capabilities in executable files.

Event Tracing For Windows (ETW) Resources

A curated list of tools for incident response

Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件

OWASP Foundation Web Respository

A next-generation crawling and spidering framework.

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

OAExploit一款基于产品的一键扫描工具。

Domain Blocklist

Gather and update all available and newest CVEs with their PoC.

基于亚马逊S3\阿里云OSS\腾讯COS通信隧道的远程管理工具

Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques

Cyber Security ALL-IN-ONE Platform

A list of cyber-chef recipes and curated links

"Screwed Drivers" centralized information source for code references, links, etc.

An step by step fuzzing tutorial. A GitHub Security Lab initiative

Sample queries for Advanced hunting in Microsoft 365 Defender

LSTAR - CobaltStrike 综合后渗透插件