Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.

The Network Execution Tool

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

Automating situational awareness for cloud penetration tests.

List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting.

Various tips & tricks

A collaborative, multi-platform, red teaming framework

Awesome list of step by step techniques to achieve Remote Code Execution on various apps!

80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.

Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.

你管这破玩意叫操作系统源码 — 像小说一样品读 Linux 0.11 核心代码

Modern Shadowsocks in Go

Adversary Emulation Framework

✅ Solutions to LeetCode by Go, 100% test coverage, runtime beats 100% / LeetCode 题解

Repository of yara rules

C++ Design Patterns

The Serenity Operating System 🐞

Go Training Class Material :

A bunch of Windows anti-debugging tricks for x86 and x64.

windows kernel security development

Some ways to inject a DLL into a alive process

在Windows环境下的进程注入方法：远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入

InjectProc - Process Injection Techniques [This project is not maintained anymore]

基于msf的后渗透协作平台

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

带注释的《X86汇编语言-从实模式到保护模式》一书代码

Design Patterns In Modern C++ 中文版翻译

A terminal for the web