Empire is a PowerShell and Python post-exploitation agent.

Docker-Compose file for vulnerability environment

一款开源指纹识别工具。

windows-operating-system-archaeology @Enigma0x3 @subTee

a plenty of poc based on python

Weaponized web shell

A DNS meta-query spider that enumerates DNS records, and subdomains.

This is a webshell open source project

A collection of Java Deserialization Exploits

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

[Project-Kob-6]安全行业从业人员自研开源扫描器合集(不收录w3af、brakeman等知名扫描工具）

Credentials recovery project

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

模块化并发框架，可处理渗透测试中 采集/爬虫/爆破/批量PoC 等需要并发的任务。

Mongoose Embedded Web Server Library - Mongoose is more than an embedded webserver. It is a multi-protocol embedded networking library with functions including TCP, HTTP client and server, WebSocke…

Duilib旗舰版-多语言、样式表、资源管理器、异形窗口、窗口阴影、简单动画（TabLayout\Gif）

A collection of all my publicly released material.

java unserialize vul for weblogic exploit

Library to load a DLL from memory.

各种漏洞poc、Exp的收集或编写

模拟一个存在漏洞的JavaScript 运行环境,用来学习浏览器漏洞原理和练习如何编写Shellcode (a JavaScript Execute Envirment which study browser vuln and how to write Shellcode ) ..

Reverse TCP Port to UDP Forwarding Tools

A C++ network service framework

易于开发基于插件的跨平台网络服务器框架

J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tests on J2EE applications.

Defeating Windows User Account Control