The Reliable USB Formatting Utility

A little tool to play with Windows security

Sandboxie Plus & Classic

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs

proxychains ng (new generation) - a preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies. continuation of the unmaintained p…

Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, S390x, TriCore, X86)

windows-kernel-exploits Windows平台提权漏洞集合

iperf3: A TCP, UDP, and SCTP network bandwidth measurement tool

proxychains - a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" fo…

chsrc 全平台通用换源工具与框架. Change Source everywhere for every software

eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

🔥 ByteHook is an Android PLT hook library which supports armeabi-v7a, arm64-v8a, x86 and x86_64.

各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新

🔥 ShadowHook is an Android inline hook library which supports thumb, arm32 and arm64.

Cross-platform multi-protocol VPN software. This repository is officially managed by Daiyuu Nobori, the founder of the project. Pull requests should be sent to the master repository at https://gith…

Windows Privilege Escalation from User to Domain Admin.

Android background process keep-alive, prevent uninstallation, anti-uninstall, background pop-up activity. The latest Android high-availability black-tech application keep-alive for 2024, achieving…

Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)

免杀对抗

助力每一位RT队员，快速生成免杀木马

libev port of ShadowsocksR

Execute unmanaged Windows executables in CobaltStrike Beacons

MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.

A socksv5 proxy tool Written by CLang. 一款纯C实现的轻量内网穿透工具，支持正向，反向socks5代理隧道的搭建，支持跨平台使用。

nginx WebShell/内存马，更优雅的nignx backdoor

添加计划任务方法集合

Docker容器逃逸工具（Docker Escape Tools）

Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.