安全升级jar包时，辅助检测Java Archive (JAR) 包之间兼容性

助力红队成员一键生成免杀木马，使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan

SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection support.

解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具

Extracted Yara rules from Windows Defender mpavbase and mpasbase

Call stack spoofing for Rust

Proof of concept code for thread pool based process injection in Windows.

Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process

Nimbo-C2 is yet another (simple and lightweight) C2 framework

毒液系列-aoman去指纹浏览器：可以通过对浏览器环境的伪造绕过部分限制，配上插件和可变隧道就可以大大增加溯源的工作量；可以通过刷新浏览器页或者新建浏览器标签页即得到全新的浏览器环境，可以帮助我们更快速更便捷的发现参数变化+去debugger浏览器

proof-of-concept for generating Java deserialization payload | Proxy MemShell

汇编HTTP请求发送/Assembly Http Request

抽离出 utf-8-overlong-encoding 的序列化逻辑，实现 2 3 字节加密序列化数组

The Poc for CVE-2024-20931

AIO Repack for latest Microsoft Visual C++ Redistributable Runtimes

Generate all call graph for Java Code.

无需文件落地Agent内存马生成器

Java JNI HellsGate/HalosGate/TartarusGate/RecycledGate/SSN Syscall/Many Shellcode Loaders

Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"

javaGGC for generate commons.collections gadget chain

Java CVE Vulnerability Environment

Some ReadObject Sink With JDBC

JavaRce complements project - use RASP to prevent vulnerabilities

Java Decompile Tool GUI-JAVA反编译工具（界面版）

ZDI presentations, publications, whitepapers etc

shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack