Mount network drive like 'net use' and find file-servers and their shared folders

护网漏洞汇总

高性能 HTTP 正向代理工具 | A high-performance http tunneling tool

.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers

In-memory token vault BOF for Cobalt Strike

A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.

BOF combination of KillDefender and Backstab

Standalone HVNC Client & Server | Written in C++ (Modified Tinynuke)

PrintNightmare , Local Privilege Escalation of CVE-2021-1675 or CVE-2021-34527

Zscan a scan blasting tool set

WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement

A tool for detect&exploit vmware product log4j(cve-2021-44228) vulnerability.Support VMware HCX/vCenter/NSX/Horizon/vRealize Operations Manager

Deleting Shadow Copies In Pure C++

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目

Focus on promoting the evolution of tools in different aspects of security research.专注于推动安全研究各个领域工具化.(项目收录逐步迁移至 https://github.com/knownsec/404StarLink)

各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新

FastSearch是一个快速文件搜索系统，它的原理是通过读取NTFS文件系统中的USN日志文件，快速地读取磁盘中的所有文件，并通过文件名称快速查找。

Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks by spawning sacrificial process with Arbitrary Code Guard (AC…

Beacon Object File to locate and suspend the threads hosting the Event Log service

修改frp支持域前置与配置文件自删除

一款golang写的支持http与socks5的端口复用小工具，并且可以开启socks5代理。

用于生成各类免杀webshell

CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.

2021hvv漏洞汇总

使用websocket将TCP包装http协议，用于进行cdn加速及隐藏后端真实ip，达到某种不可名状的目的

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.