Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…

windows-kernel-exploits Windows平台提权漏洞集合

SSH tarpit that slowly sends an endless banner

Defeating Windows User Account Control

linux-kernel-exploits Linux平台提权漏洞集合

Simple (relatively) things allowing you to dig a bit deeper than usual.

generate CobaltStrike's cross-platform payload

PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

Windows Event Log Killer

Windows Privilege Escalation from User to Domain Admin.

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

Linux Binary Exploitation

Snoopy Command Logger is a small library that logs all program executions on your Linux/BSD system.

HVNC for Cobalt Strike

AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With …

A modern 64-bit position independent implant template

Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detections and correlation rules by Blue teams.

A BOF that runs unmanaged PEs inline

MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.

Aims to identify sleeping beacons

A small x64 library to load dll's into memory.

Collection of UAC Bypass Techniques Weaponized as BOFs

not a reverse-engineered version of the Cobalt Strike Beacon

This is a PoC for bypassing UAC using DLL hijacking and abusing the "Trusted Directories" verification.