新一代主机管理工具，支持web vnc和web shell，居家办公神器：https://github.com/jkstack/natpass

Chrome-RCE-Poc

[WIP] 整理过去我和K8s、容器、虚拟化相关的分享 🧐

Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...

一款高性能 HTTP 内存代理 | 哥斯拉插件 | readteam | 红队 | 内存马 | Suo5 | Godzilla | 正向代理

Decrypt GlobalProtect configuration and cookie files.

Self Cleanup in post-ex job

一个2020年练手的基于gin框架搞的在线免杀平台，支持后台管理，邀请码注册等

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

该漏洞存在于 NtQueryInformationToken 函数中，特别是在处理AuthzBasepCopyoutInternalSecurityAttributes 函数时，该漏洞源于内核在操作对象时对锁定机制的不当管理，这一失误可能导致恶意实体意外提升权限。

SuperPrompt is an attempt to engineer prompts that might help us understand AI agents.

Crack Jlaive Crypter 25$ Crack <3

GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)

免杀与恶意软件开发

Helios: Automated XSS Testing

Silently Install Chrome Extension For Persistence

Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry

Samples from my book Windows Native API programming

A slightly more fun way to disable windows defender + firewall. (through the WSC api)

Jar Obfuscator V2 - 一个 JAR 文件保护混淆工具，支持包名/类名/方法名/字段名/参数名引用分析和重命名混淆方式，支持字符串加密/整型异或混淆/垃圾代码花指令混淆/等方式，支持方法和字段的隐藏，支持 SpringBoot 和 war 包，配置简单，文档教程齐全，容易上手

CPP AV/EDR Killer

用于存储公众号文章的 PDF 版本

Zerologon exploit with restore DC password automatically

Golang implement winrm client with pass the hash

Conference presentation slides

A .NET Framework 4.0 Windows Agent

### A security tool for enterprise terminal management that named Hephaestus

本项目是基于Neo-reGeorg进行二次开发，对PHP木马添加了AES加密，修改了请求体和响应体特征

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.