ScareCrow - Payload creation framework designed around EDR bypass.

bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)

A fast, simple, recursive content discovery tool written in Rust.

🤖 The Modern Port Scanner 🤖

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileg…

Rustcat(rcat) - The modern Port listener and Reverse shell

Automatic SSTI detection tool with interactive interface

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Monero: the secure, private, untraceable cryptocurrency

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Automatic SSTI detection tool with interactive interface

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Generate a PNG with a payload embedded in the IDAT chunk (Based off of previous concepts and code -- credit in README)

Automatic SSRF fuzzer and exploitation tool

Automatic SSRF fuzzer and exploitation tool

Monero: the secure, private, untraceable cryptocurrency

A remote control based on ICMP tunnel.

A lightweight proxy pool based on automated crawlers

My Blog

Config files for my GitHub profile.

Delete file regardless of whether the handle is used via SetFileInformationByHandle

Linux下用于远程加载可执行文件以达到内存加载的目的

dump lsass进程工具

基于frp(0.44.0)二次开发，删除不必要功能，加密配置文件，修改流量以及文件特征

dump lsass进程工具

Patches needed to build VMware (Player and Workstation) host modules against recent kernels

Patches needed to build VMware (Player and Workstation) host modules against recent kernels

Remote Administration Tool for Windows

Remote Administration Tool for Windows

Pre-Built Vulnerable Environments Based on Docker-Compose