🔥 比libevent/libuv/asio更易用的网络库。A c/c++ network library for developing TCP/UDP/SSL/HTTP/WebSocket/MQTT client/server.

Redirect any Windows/MacOS TCP and UDP traffic to HTTP/Socks5 proxy

Windows protocol library, including SMB and RPC implementations, among others.

A delicious, but malicious SSL-VPN server 🌮

BOF for Kerberos abuse (an implementation of some important features of the Rubeus).

A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.

x64 binary obfuscator

Gather and update all available and newest CVEs with their PoC.

Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations

Script collection to bypass Network Access Control (NAC, 802.1x)

Crack MSCHAPv2 challenge/responses quickly using a database of NT hashes

PoCs and technical analysis of three vulnerabilities found on Cisco AnyConnect for Windows: CVE-2020-3433, CVE-2020-3434 and CVE-2020-3435

Cisco AnyConnect < 4.8.02042 privilege escalation through path traversal

Dump Citrix Secure Access auth cookie from the process memory

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

Convert Cobalt Strike profiles to modrewrite scripts

🦘 A dependency injection container for C++11, C++14 and later

RunasCs - Csharp and open version of windows builtin runas.exe

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

IOXIDResolver.py from AirBus Security

Windows memory hacking library

Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation

A tool to help query AD via the LDAP protocol

Search tool to find specific files containing specific words, i.e. files containing passwords..

Tool to bypass LSA Protection (aka Protected Process Light)