Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

a tool to manipulate dcc(domain cached credentials) in windows registry, based mainly on the work of mimikatz and impacket

Scan for sensitive information easily and effectively.

Reverse shell generator written in Python 3.

Impacket is a collection of Python classes for working with network protocols.

Kunyu, more efficient corporate asset collection

This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010 AKA EternalBlue

Drupalgeddon2 7.x RCE

A Proof-Of-Concept for the recently found CVE-2021-44228 vulnerability.

SpringBoot Actuator未授权漏洞检测与利用

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

A communal outpouring of online resources for learning different things in cybersecurity

Linux Binary Exploitation 二进制程式开发入门 (基于linux环境)

CVE-2019-15107 webmin python3

Multi-threaded Python Port Scanner with Nmap Integration

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Java web common vulnerabilities and security code which is base on springboot and spring security

An introduction to Active Directory security