This project aims to enhance the working environment on Windows

Open-source KVM software

A little tool to play with Windows security

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

Share your terminal over the web

The pattern matching swiss knife

windows-kernel-exploits Windows平台提权漏洞集合

Deepin Wine for Ubuntu/Debian

linux-kernel-exploits Linux平台提权漏洞集合

OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX

eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

Proxifier Alternative to redirect any Windows/MacOS/Linux TCP and UDP traffic to HTTP/Socks5 proxy

Hiding kernel-driver for x86/x64.

A flexible tool for redirecting a given program's TCP traffic to SOCKS5 or HTTP proxy.

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9…

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

The swiss army knife of LSASS dumping

Google Authenticator PAM module

Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

An open-source alternative to proxifier

Tool for injecting a shared object into a Linux process

Linux技术栈

ebpfkit is a rootkit powered by eBPF

Linux Kernel Hacking

A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29

CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation

A proof-of-concept tool for reading OS X keychain passwords

virtual honeypots