Starred repositories
ACE Analyzer for identifying ESC1-8 vulnerabilities (Written by AI)
Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
Active Directory information dumper via LDAP
Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.
A tool designed for smuggling interactive command and control traffic through legitimate TURN servers hosted by reputable providers such as Zoom.
Dump Azure AD Connect credentials for Azure AD and Active Directory
C++ tool and library for converting .bin files to shellcode in multiple output formats.
Lightweight binary that joins a device to a Tailscale network and exposes a local SOCKS5 proxy. Designed for red team operations and ephemeral access into restricted environments using Tailscale’s …
A Beacon Object File (BOF) template for Visual Studio
PoC Exploit for the NTLM reflection SMB flaw.
.NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
Creating a repository with all public Beacon Object Files (BoFs)
An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memory.
WTF Solidity 极简入门教程,供小白们使用。Now supports English! 官网: https://wtf.academy
SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection support.
A socksv5 proxy tool Written by CLang. 一款纯C实现的轻量内网穿透工具,支持正向,反向socks5代理隧道的搭建,支持跨平台使用。
2026最新悄咪咪收集的10000+个Telegram群合集,附全网最有趣好用的机器人BOT🤖【dianbaodaohang.com】