A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3

An x86-64 Code Virtualizer

A Light Weight TLS Cryptography Library in C/C++ with Support for RSA ECC AES GCM and Chacha20/Poly1305

Automated iOS Backup Robot

Hook WeChat / 微信逆向

Optimized implementation for color-icon-matrix barcodes

A Go library for generating Java deserialization payloads.

Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!!!)

Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单的启动参数 | 包含多种反连可用 | 可执行文件体积仅 2 MB

SSH/HTTP(S) multiplexer. Run a webserver and a sshd on the same port w/o changes.

A Post Exploitation Tool for High Value Systems

Generate diagrams from textual description

A high-performance, zero-overhead, extensible Python compiler using LLVM

Tunnel (TUN) interface for SOCKS and HTTP proxies

VPN client in a thin Docker container for multiple VPN providers, written in Go, and using OpenVPN or Wireguard, DNS over TLS, with a few proxy servers built-in.

Windows Token Stealing Expert

Native API header files for the System Informer project.

DLL Hijack Search Order Enumeration BOF

tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"

Ruroco is a tool that lets you execute commands on a server by sending UDP packets. The commands are configured on the server side, so the client does not define what is going to be executed, it on…

一款快速、全面、易用的页面信息提取工具，可快速发现和提取页面中的JS、URL和敏感信息。

A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)

ntdll.h - compatible with MSVC 6.0, Intel C++ Compiler and MinGW. Serves as a complete replacement for Windows.h

a panda executable file decompiler of HarmonyOS Next

加载 BOF & ShellCode 无需可执行权限内存。Loading BOF & ShellCode without executable permission memory.

A command and control framework written in rust.

real time face swap and one-click video deepfake with only a single image

Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.

havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets