Demonstrates consuming from a SecurityTrace ETW session by consuming from the Threat-Intelligence ETW provider without a driver or PPL privilege

UDC2 implementation that provides an ICMP C2 channel

Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames

Thinkphp-rce

go语言编写的一款非常快、误报低的一个批量shiro（可带路径）扫描神器 A Go-based batch Shiro vulnerability scanner: exceptionally fast with minimal false positives (path-aware)

linux内网严苛环境下的内网扫描 Port scanning in restricted internal network environments

load shellcode without P/D Invoke and VirtualProtect call.

Local SYSTEM auth trigger for relaying

Cobalt Strike BOF for evasive .NET assembly execution

Run it before you bypassUAC

Use NT Native Registry API to create a registry that normal user can not query.

一个用于Dump特定进程内存的BOF，主要用来dump todesk进程然后找密码

A beacon object file implementation of PoolParty Process Injection Technique.

A simple Sleepmask BOF example

A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization,…

Standalone utility for service discovery on open ports!

Slides & Code snippets for a workshop held @ x33fcon 2024

Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式

用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用 内存马注入

A C# Solution Source Obfuscator for avoiding AV signatures with minimal user interaction. Powered by the Roslyn C# library.

CVE-2024-3400 Palo Alto OS Command Injection

寻找可利用的白文件

PowerShell rebuilt in C# for Red Teaming purposes

👩🏿‍💻👨🏾‍💻👩🏼‍💻👨🏽‍💻👩🏻‍💻中国独立开发者项目列表 -- 分享大家都在做什么

Redis 漏洞利用工具