Macro-header for compile-time C obfuscation (tcc, win x86/x64)

Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penet…

A Huge Learning Resources with Labs For Offensive Security Players

A repository for additional files related to the book Windows Security Internals with PowerShell from No Starch Press.

A cross-platform GUI wrapper for NextTrace. Bringing you the familiar traceroute experience. OpenTrace 是 NextTrace 的跨平台 GUI 界面，带来您熟悉但更强大的用户体验。

FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log ag…

A C++ tool to unstrip Rust/Go binaries (ELF and PE)

ELFEN: Automated Linux Malware Analysis Sandbox

Quickly find differences and similarities in disassembled code

A memory-based evasion technique which makes shellcode invisible from process start to end.

Bypassing PatchGuard on modern x64 systems

Supershell C2 远控平台，基于反向SSH隧道获取完全交互式Shell

Living Off The Land Drivers

Encypting the Heap while sleeping by hooking and modifying Sleep with our own sleep that encrypts the heap

ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption

Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CVE-2020-17087 and an off-by-one overflow

GraalVM compiles Java applications into native executables that start instantly, scale fast, and use fewer compute resources 🚀

A collection of browser exploitation codes from Singular Security Lab.

Full-VM taint analysis with Xen, Intel(R) Processor Trace and Triton.

libipt - an Intel(R) Processor Trace decoder library

Lightweight Intel VT-x Hypervisor.

A C# Command & Control framework

SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.

.NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.

Warp is a modern, Rust-based terminal with AI built in so you and your team can build great software, faster.

DeimosC2 is a Golang command and control framework for post-exploitation.

Enumerate and disable common sources of telemetry used by AV/EDR.

Free, Open Source, User-Mode SMB 1.0/CIFS, SMB 2.0, SMB 2.1 and SMB 3.0 server and client library

A framework for developing alerting and detection strategies for incident response.