HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.

C2-下一代RAT

面向红队的, 高度可控可拓展的自动化引擎

Observe any stack, any service and any data, using any UI components you prefer, never missing any X factors and resolve them before they become problems.

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

Yet another xpc sniffer

Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.

一款支持高度自定义的 Java 内存马生成工具｜A highly customizable Java memory-shell generation tool.

The production-scale datacenter profiler (C/C++, Go, Rust, Python, Java, NodeJS, .NET, PHP, Ruby, Perl, ...)

Create Customized Software using Natural Language Idea (through LLM-powered Multi-Agent Collaboration)

🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!

🚀Vulfocus 是一个漏洞集成平台，将漏洞环境 docker 镜像，放入即可使用，开箱即用。

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

RedEye is a visual analytic tool supporting Red & Blue Team operations

HeapDump敏感信息提取工具

A cross platform C2/post-exploitation framework.

腾讯柠檬清理是针对macOS系统专属制定的清理工具。主要功能包括重复文件和相似照片的识别、软件的定制化垃圾扫描、可视化的全盘空间分析、内存释放、浏览器隐私清理以及设备实时状态的监控等。重点聚焦清理功能，对上百款软件提供定制化的清理方案，提供专业的清理建议，帮助用户轻松完成一键式清理。

使用windows api添加用户，可用于net无法使用时.分为nim版，c++版本，RDI版，BOF版。

a reverse TCP tunnel let you access target behind NAT or firewall

Chinese-specific configuration to improve your favorite DNS server. Best partner for chnroutes.

A tool for secrets management, encryption as a service, and privileged access management

Distributed web crawler admin platform for spiders management regardless of languages and frameworks. 分布式爬虫管理平台，支持任何语言和框架

🌴Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

整理的2019年厂商发布的漏洞预警公开POC集合，不足之处还希望多多补充，完善

用于寻找多网卡主机方便内网跨网段渗透避免瞎打找不到核心网

Shiro550/Shiro721 一键化利用工具，支持多种回显方式

远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

Hook system calls on Windows by using Kaspersky's hypervisor