Rshell是一款开源的golang编写的支持多平台的C2框架，旨在帮助安服人员渗透测试、红蓝对抗。

SSH based reverse shell

Supershell C2 远控平台，基于反向SSH隧道获取完全交互式Shell

A utility to detect various technology for a given IP address.

Jar Analyzer - 一个 JAR 包 GUI 分析工具，方法调用关系搜索，方法调用链 DFS 算法分析，模拟 JVM 的污点分析验证 DFS 结果，字符串搜索，Java Web 组件入口分析，CFG 程序分析，JVM 栈帧分析，自定义表达式搜索，支持 MCP 调用，文档：https://docs.qq.com/doc/DV3pKbG9GS0pJS0tk

Jawd——Jar文件编辑并重新打包导出神器。一款能够让你在AWD抢占先机，应急响应第一时间修复bug的神器

hashcat_gui项目 ，轻松使用密码破解 ，自动识别密码对应格式

An advanced memory forensics framework

Network Analysis Tool

PyInstaller Extractor Next Generation

Hypervisor based anti anti debug plugin for x64dbg

A list of free and open forensics analysis tools and other resources

Python decompiler for modern Python versions.

General purpose JavaScript deobfuscator

Flutter Mobile Application Reverse Engineering Tool

简单的取证工具

✅ No execution ✅ Pyarmor 8.0 - 9.2.x (latest) ✅ Universal ✅ Statically convert obfuscated Python scripts to disassembly and (experimentally) source code.

A deobfuscator for PyArmor.

JavaSecLab is a comprehensive Java vulnerability platform｜​ JavaSecLab是一款综合型Java漏洞平台，提供相关漏洞缺陷代码、修复代码、漏洞场景、审计SINK点、安全编码规范，覆盖多种漏洞场景，友好用户交互UI……

fastjson利用，支持tomcat、spring回显，哥斯拉内存马；回显利用链为dhcp、ibatis、c3p0。

A tiny project for generating SnakeYAML deserialization payloads

Next-Generation Linux Kernel Exploit Suggester

Linux privilege escalation auditing tool

WhatsApp Parser Toolset v1.59

Reverse engineering WhatsApp Web.

LevelDB is a fast key-value storage library written at Google that provides an ordered mapping from string keys to string values.

A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.

Files + Writeups for DownUnderCTF 2022 Challenges

Tool for building Kubernetes attack paths