备份的漏洞库，3月开始我们来维护

🐹 Deep clean and optimize your Mac.

BYOVD research use cases featuring vulnerable driver discovery and reverse engineering methodology. (CVE-2025-52915, CVE-2025-1055,).

Kernel Driver Utility

Defeating Windows User Account Control

rust 免杀，方法记录 - 偶尔更新

windows-rs shellcode loaders

RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust

Shikata ga nai (仕方がない) encoder ported into go with several improvements

一个简单的远程分离的加载器,免杀国内大部分杀软(360 火绒 Windows Defender 金山毒霸 电脑管家)

Find a geolocation of an IP address including city, region, country and organization.

Cross-platform game hack for Counter-Strike 2 with Panorama-based GUI.

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.

WAF Research

A javascript library providing cross-browser, cross-site messaging/method invocation.

Cross-browser support for HTML5's noreferrer link type.

test script for shellshocker and related vulnerabilities

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors

Shell script for testing the SSL/TLS Protocols

The Browser Exploitation Framework Project

Security Guide for Developers

Created by Jin Qian via the GitHub Connector

ZoomEye-python: The official Python library and CLI by Knownsec 404 Team.

Fast and powerful SSL/TLS scanning library.

OnionScan is a free and open source tool for investigating the Dark Web.

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo: