Exploit LnvMSRIO.sys vulnerable driver

将.Net程序转换成shellcode（支持X86|X64），不使用Donut

使用C简单重构Beacon，适配CobaltStrike客户端

A collection of out-of-tree LLVM passes for teaching and learning

PoC exploit for the vulnerable WatchDog Anti-Malware driver (amsdk.sys) – weaponized to kill protected EDR/AV processes via BYOVD.

Now You See Me, Now You Don't

高质量的 n8n 中文教程与实战手册，涵盖核心概念、环境部署、节点详解、调试与进阶技巧，配套案例与截图，帮助快速上手并构建稳定的自动化工作流。

BYOVD research use cases featuring vulnerable driver discovery and reverse engineering methodology. (CVE-2025-52915, CVE-2025-1055,).

Rshell-client

Rshell-web

Starkiller is a Frontend for PowerShell Empire.

🛠️ Bypass user-land hooks by tampering with syscalls using the Trap Flag for enhanced debugging and program control.

A configuration framework that enhances Claude Code with specialized commands, cognitive personas, and development methodologies.

Rshell是一款开源的golang编写的支持多平台的C2框架，旨在帮助安服人员渗透测试、红蓝对抗。

A socksv5 proxy tool Written by CLang. 一款纯C实现的轻量内网穿透工具，支持正向，反向socks5代理隧道的搭建，支持跨平台使用。

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+Bloc…

Proof of Concepts code for Bring Your Own Vulnerable Driver techniques

Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By following this approach, a security researcher will hopefully…

ProjectD is an educational proof-of-concept that shows how to build a Google-Drive–based command-and-control framework (C2) in C/C++.

An even funnier way to disable windows defender. (through WSC api)

Reflective shellcode loader with advanced call stack spoofing and .NET support. Enhance stealth against EDR and debugging tools. 🌟🐙

An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.

Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking

TradingAgents: Multi-Agents LLM Financial Trading Framework

PrimitiveInjection by using Read, Write and Allocation Primitives.

Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techniques

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.