Lists (9)
Starred repositories
Android APK security analysis tool. Decompiles DEX, scans for vulns, parses manifests and certs. Runs in your browser.
BOF for Havoc that copies locked Windows files (SAM, SYSTEM, NTDS.dit) via raw MFT parsing — no VSS, no Registry APIs, no PowerShell
Nim implementation for sud0Ru's Credential Dumping from SAM/SECURITY Hives Method (a.k.a. SilentHarvest)
retrieve information via O365 and AzureAD with a valid cred
An example UDC2 implementation for CrystalC2.
为 AI Agent 设计的 JS 逆向 MCP Server,内置反检测,基于 chrome-devtools-mcp 重构 | JS reverse engineering MCP server with agent-first tool design and built-in anti-detection. Rebuilt from chrome-devtools-mcp.
SSRF plugin for burp Automates SSRF Detection in all of the Request
Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool
x64DbgMCPServer made from c# with Claude, Windsurf and Cursor support
Local account pool, dashboard & Anthropic-compatible API proxy for Notion AI. Claude Code compatible. Built with Go + React. 本地 Notion AI 多账号池管理与 API 代理工具,兼容 Claude Code,提供配额监控、Web 反向代理与 Anthropic …
GO-RAT is a simple cross platform remote access tool (RAT) framework with a command-and-control server and client agent, designed for learning/testing in controlled environments.
Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.
Automated prompt injection testing framework for LLM-integrated applications with dual-LLM architecture.
KslDump — Why bring your own knife when Defender already left one in the kitchen?
🚀 Transparent proxy injector for Antigravity. Force SOCKS5/HTTP proxy without TUN mode on Windows. | 专为 Antigravity 打造的免 TUN 强制代理工具,支持 DLL 注入与进程流量劫持。
Conquest is a feature-rich and malleable command & control/post-exploitation framework developed in Nim.
ObfuXtreme is an advanced Python obfuscation tool for security research, reverse engineering education, and analysis of how obfuscation impacts static and signature-based detection.
Reverse engineering skills for Claude Code | 逆向工程 Claude Code Skills 插件
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.
A comprehensive HTTP client MCP (Model Context Protocol) server for API testing, web automation and security testing. Provides full-featured HTTP tools with detailed logging capabilities. 为API 测试和 …
PwnPad is an affordable, hands-on hardware hacking platform built for practical learning. It features a range of challenges that walk users through key hardware security concepts, from PCB design t…
Daystrom is a CLI tool that provides full operational coverage over Palo Alto Prisma AIRS AI security capabilities
KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulation for LSASS memory dumping on modern Windows with HVCI/VBS.
Python3 implementation of ADRecon with support for NTLM and Kerberos authentication querying LDAP. Generates individual CSV files and a single XSLX + HTML report about your AD domain.