通过生成不同hash的ico并写入程序中，实现批量bypass360QVM

Converts PE into a shellcode

The great impacket example scripts compiled for Windows

Impacket is a collection of Python classes for working with network protocols.

Neo-reGeorg is a project that seeks to aggressively refactor reGeorg

一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool

👻Stowaway -- Multi-hop Proxy Tool for pentesters

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

PowerSploit - A PowerShell Post-Exploitation Framework

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

RottenPotato local privilege escalation from service account to SYSTEM

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

Defeating Windows User Account Control

A little tool to play with Windows security

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。

generate CobaltStrike's cross-platform payload

Metasploit Framework

Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。

自动化反编译微信小程序，小程序安全评估工具，发现小程序安全问题，自动解密，解包，可还原工程目录，支持Hook，小程序修改

微信小程序反编译工具，.wxapkg 文件扫描 + 解密 + 解包工具

一款帮助云租户发现和测试云上风险、增强云上防护能力的综合性开源工具

小程序登陆包加解密

基于ARL v2.6.2版本源码，生成docker镜像进行快速部署，同时提供七千多条指纹

ARL官方仓库备份项目：ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

《安卓逆向这档事》