Evil-M5Project is an innovative tool developed for ethical testing and exploration of WiFi networks. It's compatible with Cardputer, Atoms3, Fire, core2. You can scan, monitor, and interact with Wi…

early cascade injection PoC based on Outflanks blog post

Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share th…

Sleep obfuscation

Yet another llvm based obfuscator based on goron.

SubDroid 是ぜ一いち款针对网络安全ぜん领域的てき自じ动化子こ域いき名めい枚まい举与安全あんぜん扫描工具こうぐ。它专为渗透とおる测试人じん员、安全あんぜん研究けんきゅう人じん员及开发者しゃ设计,旨むね在ざい帮助快速かいそく发现潜在せんざい的てき安全あんぜん问题。SubDroid 集成しゅうせい了りょう多た个强大だい的てき安全あんぜん工具こうぐ,通つう过简洁的命令めいれい行ぎょう界面かいめん提供ていきょう了りょう高だか效こう的てき子こ域いき名めい扫描、DNS 查询、端はし口こう扫描、活かつ跃性检测、指ゆび纹识别、漏も洞ほら扫描等とう功こう能のう。

SharpSQLTools 和わ@Rcoil一いち起おこり写うつし的てき小しょう工具こうぐ，可か上うえ传下载文件けん，xp_cmdshell与あずかsp_oacreate执行命令めいれい回かい显和clr加か载程序じょ集しゅう执行相しょう应操作そうさ。

Remote Desktop Protocol .NET Console Application for Authenticated Command Execution

Windows Kernel Rootkit in Rust

LotL RMM

Rust port of LayeredSyscall, designed to perform indirect syscalls while generating legitimate API call stack frames by abusing Vectored Exception Handling (VEH) to bypass user-land EDR hooks in Wi…

Firmware Analysis Tool

A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where we scanned 20k+ public AMIs.

Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement

Generates millions of keyword-based password mutations in seconds.

Abusing Intune for Lateral Movement over C2

一いち款高性能せいのう HTTP 内ない存そん代理だいり | 哥斯拉ひしげ插件 | readteam | 红队 | 内うち存そん马 | Suo5 | Godzilla | 正せい向こう代理だいり

Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.

Tool for extracting information from newly spawned processes

Zero shot vulnerability discovery using LLMs

SecretOpt1c is a Red Team tool that helps uncover sensitive information in websites using ACTIVE and PASSIVE Techniques for Superior Accuracy!

Evasive shellcode loader

In-depth repository of Telegram OSINT resources covering, tools, techniques & tradecraft.

Retrieve and display information about active user sessions on remote computers. No admin privileges required.

A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.

A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders implemented by C2 beacons) or other problematic executables tha…

go 常用じょうよう编码解かい码库 (Hex/Base32/Base45/Base58/Base62/Base64/Base85/Base91/Base100/MorseITU/JSON)

一いち款用Go语言编写的てき数すう据すえ库自动化提ひさげ权工具ぐ，支持しじMysql、MSSQL、Postgresql、Oracle、Redis数すう据すえ库提权、命令めいれい执行、爆破ばくは以及ssh连接

64-bit, position-independent implant template for Windows in Rust.

A Python POC for CRED1 over SOCKS5