Simple shell implementation. Tutorial here ->

ReCopilot: Reverse Engineering Copilot in Binary Analysis

Open-source, community-driven agent harness

RoguePlanet Windows Defender Vulnerability

Import local header files into your windbg to use the macro !dt on them

Advanced DNS tunneling VPN for censorship bypass, optimized beyond DNSTT and SlipStream with low-overhead ARQ, resolver load balancing, high packet-loss stability and speed.

Based on the sing-box core, this Android proxy module supports one-click start/stop of transparent proxy and is designed for Android devices.

An HTTP toolkit for security research.

Experimental iOS/macOS client for sing-box

A fileless C2 framework written in pure x64 Linux Assembly with zero libc dependencies. Features dynamic protocol pivoting between raw ICMP sockets and DNS (UDP/53) via in-memory VTable manipulatio…

GateSentinel 是一个现代化的 C2 (Command and Control) 框架，专为安全研究和渗透测试设计。该项目采用 Go 语言开发服务端，C 语言开发客户端，提供了强大的远程控制和管理功能。

A fast, native RSS reader for the desktop.

Transparent SOCKS5 proxy for Windows. WinTProxy intercepts IPv4 TCP and UDP traffic with WinpkFilter (ndisapi), plans each packet through explicit DNS, bypass, policy, proxy, return-path, and actio…

KernelFlirt is powerful kernel debugger.

Reverse Engineered Obfuscated PHP Shell Backdoor from around the world for security research

Full exploit code for CVE-2026-40369 - A Windows kernel arbitrary write vulnerability that allows browser sandbox escape from all browsers render process sandbox

Function Calling Assitant for Cheat Engine

Golang reverse proxy with CobaltStrike malleable profile validation.

UAC bypass for x64 Windows 7 - 11

Crack legacy zip encryption with Biham and Kocher's known plaintext attack.

RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.

Windows x64 handcrafted token stealing kernel-mode shellcode

Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.

Useful scripts for WinDbg using the debugger data model

This program is designed to demonstrate various process injection techniques

IP geolocation databases tool and library. IP 地理位置数据库工具。

This project is a cross-platform backdoor/reverse shell and post-exploitation tool written in Python3

The best-in-class HTTP Debugger for macOS. Capture HTTP/HTTPS from macOS, iOS, Android with a few clicks ✅

A small x64 library to load dll's into memory.