Extract SAM and SYSTEM using Volume Shadow Copy (VSS) API. With multiple exfiltration options and XOR obfuscation

Go 代码混淆工具，使用 AST (抽象语法树) 技术实现跨文件的代码混淆，同时保证混淆后的代码可编译和可执行。

Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data

Execute commands interactively on remote Windows machines using the WinRM protocol

LD_PRELOAD Rootkit

This is the tool to dump the LSASS process on modern Windows 11

Panoptes Endpoint Detection and Response Solution

A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTAPI for various operations.

Next Generation Java WebShell Manager

Rshell是一款开源的golang编写的支持多平台的C2框架，旨在帮助安服人员渗透测试、红蓝对抗。

Tool for injecting a shared object into a Linux process

Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀

Dumping App Bound Protected Credentials & Cookies Without Privileges.

A fast WordPress plugin enumeration tool

综合后渗透方面的杂烩

Windows remote execution multitool

A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.

An even funnier way to disable windows defender. (through WSC api)

Toolkit of Projects to attack and evade Event Trace for Windows

《深入JDBC安全：特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Exploitation Techniques Revealed" - Research Summary Project

Xhide for linux

从内存中提取浏览器和Todesk用户凭证

https://mp.weixin.qq.com/s/7xlMenU4AKWVsT5uHuIW9g 的C++实现

Vulhub Vulnerability Reproduction Designated Platform

用于探测Log4j漏洞, 将它POC的威力最大化, POC验证成功后会立即收到目标机器的系统主机名、时间、版本号、用户名、环境变量以及Log4j路径、java版本号、中间件信息等信息.

一款帮助云租户发现和测试云上风险、增强云上防护能力的综合性开源工具

分享ABC_123自己改造的ysoserial工具，java反序列化漏洞利用，生成的java反序列化利用链支持jdk1.5版本的老旧系统的利用。

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

EWSTool是一个针对EXCHANGE邮件服务器的后渗透利用工具。使用ews接口，实现人员邮箱列表获取、搜索邮件、下载邮件等实用功能。