The Red Sun vulnerability repository

Titanis Backup Operator

The best-benchmarked open-source AI memory system. And it's free.

Repository hosting the bluehammer vulnerability

AI-powered penetration testing assistant using local LLM on linux (Parrot OS)

GhostSSH Lightweight SSH-over-HTTPS proxy for secure and firewall‑friendly remote access.

The repo is finally unlocked. enjoy the party! The fastest repo in history to surpass 100K stars ⭐. Join Discord: https://discord.gg/5TUQKqFWd Built in Rust using oh-my-codex.

Surgical UNWIND_INFO preservation for sleep masking without call stack spoofing.

A Ligolo-ng JavaScript agent working inside Chrome & Chromium-based browsers by leveraging Isolated Web Applications.

A radare2 script to parse the gopclntab to facilitate Reverse Engineering Go binaries.

Micro framework to create your own signal bots.

Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques

KslDump — Why bring your own knife when Defender already left one in the kitchen?

JavaScript in-page GUI agent. Control web interfaces with natural language.

Adaptix C2 agent using Crystal Palace PIC linker and PICO module system

EvoSkill — An open-source framework that automatically discovers and synthesizes reusable agent skills from failed trajectories to improve coding agent performance.

An exploit for the Cisco Catalyst SD-WAN Controller authentication bypass vulnerability, CVE-2026-20127

Phantom is project created to perform loading and executing unmanaged code in memory within an IIS environment running in full‑trust mode. Instead of relying on file‑based approach, it uses reflect…

Disposable, ephemeral network infrastructure powered by GitHub Codespaces.

Turn any collection of documents into a knowledge graph. Extract entities and relationships via LLM, deduplicate with your approval. Map domains, find hidden connections, spot patterns across docum…

A BloodHound OpenGraph collector that models Windows local privilege escalation as interconnected attack paths.

Agent framework and applications built upon Qwen>=3.0, featuring Function Calling, MCP, Code Interpreter, RAG, Chrome extension, etc.

GhidraMCP for headless

High-performance browser automation bridge and multi-instance orchestrator with advanced stealth injection and real-time dashboard.

CyberStrikeAI is an AI-native security testing platform built in Go. It integrates 100+ security tools, an intelligent orchestration engine, role-based testing with predefined security roles, a ski…

Automated DLL Hijacking Discovery, Validation, and Confirmation. Turning local misconfigurations into weaponized, confirmed attack paths.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve…

Fastest, smallest, and fully autonomous AI assistant infrastructure written in Zig

Test your prompts, agents, and RAGs. Red teaming/pentesting/vulnerability scanning for AI. Compare performance of GPT, Claude, Gemini, Llama, and more. Simple declarative configs with command line …

The entrance repository of Markdown presentation ecosystem