系统监控开发套件（sysmon、procmon、edr、终端安全、主机安全、零信任、上网行为管理、沙箱）

CVE-2023-34039

IDA plugin which queries OpenAI's ChatGPT to explain decompiled functions

Collection of Cyber Threat Intelligence sources from the deep and dark web

一个各类漏洞POC知识库

A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.

A lib that allows using mhyprot2 driver for enum process modules, r/w process memory and kill process.

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

PoC for triggering buffer overflow via CVE-2020-0796

POC for cve-2019-1458

Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

A swiss army knife for pentesting networks

Proof-of-concept code for various bugs

Interactive CTF Exploration Tool

Windows process injection methods

Windows Events Samples

致远OA漏洞验证

dump

Scanner PoC for CVE-2019-0708 RDP RCE vuln

The goal of this repository is to document the most common techniques to bypass AppLocker.

CVE-2019-0604

FileReader Exploit

exp for https://research.checkpoint.com/extracting-code-execution-from-winrar

CVE-2018-8581 | Microsoft Exchange Server Elevation of Privilege Vulnerability

The exploit samples database is a repository for **RCE** (remote code execution) exploits and Proof-of-Concepts for **WINDOWS**, the samples are uploaded for education purposes for red and blue teams.

Extract OLEv1 objects from RTF files by instrumenting Word

It's not real CVE-2018-8420,just execute the script in <ms:script> tag