A Rust template for writing Beacon Object Files (BOFs)

A Cobalt Strike BOF implementation of the SilentHarvest registry dumping technique

A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.

Security testing toolkit for Claude Code: curated SecLists wordlists, injection payloads, and expert agents for authorized pentesting, CTFs, and bug bounties

Modular User-Defined Reflective Loader (UDRL) built on Crystal Palace for controlled DLL execution and evasion research.

Android APK security analysis tool. Decompiles DEX, scans for vulns, parses manifests and certs. Runs in your browser.

BOF for Havoc that copies locked Windows files (SAM, SYSTEM, NTDS.dit) via raw MFT parsing — no VSS, no Registry APIs, no PowerShell

Nim implementation for sud0Ru's Credential Dumping from SAM/SECURITY Hives Method (a.k.a. SilentHarvest)

retrieve information via O365 and AzureAD with a valid cred

An example UDC2 implementation for CrystalC2.

适用于Node.js环境下的Suo5内存马.

为 AI Agent 设计的 JS 逆向 MCP Server，内置反检测，基于 chrome-devtools-mcp 重构 | JS reverse engineering MCP server with agent-first tool design and built-in anti-detection. Rebuilt from chrome-devtools-mcp.

SSRF plugin for burp Automates SSRF Detection in all of the Request

PHP-Code-Audit-Skill是一个专注于PHP代码审计的Skill

Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool

x64DbgMCPServer made from c# with Claude, Windsurf and Cursor support

Local account pool, dashboard & Anthropic-compatible API proxy for Notion AI. Claude Code compatible. Built with Go + React. 本地 Notion AI 多账号池管理与 API 代理工具，兼容 Claude Code，提供配额监控、Web 反向代理与 Anthropic …

GO-RAT is a simple cross platform remote access tool (RAT) framework with a command-and-control server and client agent, designed for learning/testing in controlled environments.

Source code for the CrystalC2 client.

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

Automated prompt injection testing framework for LLM-integrated applications with dual-LLM architecture.

KslDump — Why bring your own knife when Defender already left one in the kitchen?

🚀 Transparent proxy injector for Antigravity. Force SOCKS5/HTTP proxy without TUN mode on Windows. | 专为 Antigravity 打造的免 TUN 强制代理工具，支持 DLL 注入与进程流量劫持。

COM-based DLL Surrogate Injection

Conquest is a feature-rich and malleable command & control/post-exploitation framework developed in Nim.

ObfuXtreme is an advanced Python obfuscation tool for security research, reverse engineering education, and analysis of how obfuscation impacts static and signature-based detection.

Reverse engineering skills for Claude Code | 逆向工程 Claude Code Skills 插件

ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.

A comprehensive HTTP client MCP (Model Context Protocol) server for API testing, web automation and security testing. Provides full-featured HTTP tools with detailed logging capabilities. 为API 测试和 …

PwnPad is an affordable, hands-on hardware hacking platform built for practical learning. It features a range of challenges that walk users through key hardware security concepts, from PCB design t…