A lightweight and high-performance reverse proxy for NAT traversal, written in Rust. An alternative to frp and ngrok.

slime is an LLM post-training framework for RL Scaling.

All-in-one AI automation platform (workflows, agents, cases, tables) for security, IT, and infra teams.

A serverless proxy implementation that uses NAT hole punching to establish QUIC tunnels through AWS Lambda functions

Injecting DLL into LSASS at boot

一款使用rust开发的高性能正反向隧道代理工具，基于多路复用技术。

前端参数加密渗透测试通用解决方案

Protected Process Dumper Tool

Live Feed of C2 servers, tools, and botnets

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

A full-featured, hackable Next.js AI chatbot built by Vercel

vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.

A JupyterLab extension to evaluate the security of your Jupyter environment

Reflective DLL Injection Made Bella

搜集了市面上绝大部分weblogic解密方式，整理了7种解密weblogic的方法及响应工具。

Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)

Linux应急处置/信息搜集/漏洞检测工具，支持基础配置/网络流量/任务计划/环境变量/用户信息/Services/bash/恶意文件/内核Rootkit/SSH/Webshell/挖矿文件/挖矿进程/供应链/服务器风险等13类70+项检查

Dump NTDS with golden certificates and UnPAC the hash

Nacos 综合漏洞利用工具

TweetTrace is a free and open-source Chrome extension that records tweets you visit, providing seamless search and filtering functionalities to help you navigate your Twitter history while keeping …

Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency

自动化反编译微信小程序，小程序安全评估工具，发现小程序安全问题，自动解密，解包，可还原工程目录，支持Hook，小程序修改

macOS上的小而美【Fofa、Shodan、Hunter、Zoomeye、Quake网络空间搜索引擎】闪电搜索器；GUI图形化(Mac/Windows)渗透测试信息搜集工具；资产搜集引擎；hw红队工具hvv

Agent Framework For Fintech and Banks

通过c++导出函数的修饰名字反查其未修饰时的原名

:: Prism X · Automated Enterprise Network Security Risk Detection and Vulnerability Scanning Tool / 棱镜 X · 自动化企业网络安全风险检测、漏洞扫描工具

Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()

sqlmap4burp++是一款兼容Windows，mac，linux多个系统平台的Burp与sqlmap联动插件

xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作，上传，job等相应操作。

Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.