Post Exploitation Collection

Impacket is a collection of Python classes for working with network protocols.

The Router Exploitation Framework

Miscellaneous exploit code

Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.

MS17-010

Indicators of Compromises (IOC) of our various investigations

Cuckoo Sandbox is an automated dynamic malware analysis system

🔗 Some useful websites for programmers.

For use with Kali Linux. Custom bash scripts used to automate various pentesting tasks.

cve-search - a tool to perform local searches for known vulnerabilities

Natural Language tool/dialog manager

Hacking techniques useful during CTFs

Windows exploits, mostly precompiled.

记录一些python写的好东西(不一定都是python的)

proxychains ng (new generation) - a preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies. continuation of the unmaintained p…

Pure-Python implementation of AES block-cipher and common modes of operation.

The Shadow Brokers "Lost In Translation" leak

Scripted Local Linux Enumeration & Privilege Escalation Checks

Here is the source code from all of my tutorials.

A shellcode writing toolkit

Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.

Android APK Antivirus evasion for msfvenom generated payloads.

Converter for raw RubberDucky payloads to Digispark Arduino IDE Sketch source.

Code written as part of our various malware investigations http://www.welivesecurity.com/

How to use a DigiSpark like a RubberDucky