Open Source Agentic SOC Platform

Hunt every Endpoint in your code, expose Shadow APIs, map the Attack Surface.

EVA is an AI-assisted penetration testing agent that enhances offensive security workflows by providing structured attack guidance, contextual analysis, and multi-backend AI integration.

Fully autonomous AI hacker to find actual exploits in your web apps. Shannon has achieved a 96.15% success rate on the hint-free, source-aware XBOW Benchmark.

React Shell & Next.js RSC Exploit Tool (CVE-2025-55182)

Flexpilot IDE - Open-Source AI Native IDE

An Open Phone Agent Model & Framework. Unlocking the AI Phone for Everyone

Windows Session Hijacking via COM

poc for cve-2025-53772

Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.

Decrypt Veeam database passwords

CVE-2025-65964复现

Phantom Keylogger is an advanced, stealth-enabled keystroke and visual intelligence gathering system.

Test of https://gitlab.com/ZeroDot1/CoinBlockerLists/raw/master/list_browser.txt

Lockbit, URSIF, BlackBasta etc.

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…

CVE-2025-55182

High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)

SeaweedFS is a fast distributed storage system for blobs, objects, files, and data lake, for billions of files! Blob store has O(1) disk seek, cloud tiering. Filer supports Cloud Drive, xDC replica…

Explanation and full RCE PoC for CVE-2025-55182

Various IOCs discovered during research

CVE-2025-55182 POC

MITM proxy for TCP/TLS/DTLS/UDP traffic, with STARTTLS, IoT, Thick Client and more.

orgininaly this was a rewrite of routersploit rebuild in rust but it has grown and started shaping into something more

LEGION2 - A free and open-source penetration testing tool. Forked from an earlier version of LEGION, which was originally created by Gotham Security. It was archived in 2024 and left broken.

AntiHunter Perimeter Defense Systems

Emora is an OSINT tool like sherlock but with a GUI, which search for accounts by username across social networks

SpicyAD is a C# Active Directory penetration testing tool designed for authorized security assessments. It combines multiple AD attack techniques into a single, easy-to-use tool with both interacti…

Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent. By using Claude.md and creating rules, sub-agents, and skills, and orchestrating security tool usage, we confi…