a signal handler race condition in OpenSSH's server (sshd)

CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH

CVE-2024-4367 & CVE-2024-34342 Proof of Concept

SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection support.

PoC exploits for software vulnerabilities

A Modern Redis GUI Client

CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code

Slides and Codes used for the workshop Red Team Infrastructure Automation

A POC to disable TamperProtection and other Defender / MDE components

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

weblogic批量打入内存马，electron+vue3+springboot实现。

golang实现通过dcerpc和ntlmssp获取Windows远程主机信息

🗽 基于Socket RAW，利用 NTLMSSP 探测 Windows远程主机信息

Exploit and detect tools for CVE-2020-0688

GUI Exploit Tool for CVE-2020-0688(Microsoft Exchange default MachineKeySection deserialize vulnerability)

Exploiting XXE Vulnerabilities on Microsoft SharePoint Server and Cloud via Confused URL Parsing

smbclient-ng, a fast and user friendly way to interact with SMB shares.

Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).

精简版搜集工具

强大的敏感信息搜索工具

BurpSuite using the document and some extensions

burpsuite extension，将unicode字符串显示为中文

Deobfuscate obfuscator.io, unminify and unpack bundled javascript

Tomcat漏洞利用工具

内网穿透(跨平台)

The Next Generation of Anti-Rookit(ARK) tool for Windows.

CVE-2024-32002 RCE PoC

海康威视漏洞综合利用工具，支持一键上传哥斯拉等多种利用方式

Heavily obfuscated ASP web shell generation tool.

一款基于 gopacket 编写的 ICMP 反弹 shell 工具