333
My solution to an ESXi Password reset script for Passwordstate automatic password resetting
Reset Root password for ESXi 6.X without host profile or maintenance mode
UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red Teams malware
Recover the default privilege set of a LOCAL/NETWORK SERVICE account
WSO2 RCE (CVE-2022-29464) exploit and writeup.
Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
More than 21K security related open source tools, sorted by star count. Both in markdown and json format.
A command-line installer for Windows.
Cross-platform multi-protocol VPN software. Pull requests are welcome. The stable version is available at https://github.com/SoftEtherVPN/SoftEtherVPN_Stable.
A swiss army knife for pentesting networks
Remote Download and Memory Execute for shellcode framework
Load self-signed drivers without TestSigning or disable DSE. Transferred from https://github.com/DoubleLabyrinth/Windows10-CustomKernelSigners
Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
C/C++ Runtime library for system file (Windows Kernel Driver) - Supports Microsoft STL
Using "svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc" as trigger
Search tool to find specific files containing specific words, i.e. files containing passwords..
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
Open repository for learning dynamic shellcode loading (sample in many programming languages)
A tool for creating hidden accounts using the registry || 一个使用注册表创建隐藏帐户的工具