A tool for remote ADB exploitation in Python3 for all Machines.
An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.
AMWScan (PHP Antimalware Scanner) is a free tool to scan php files and analyze your project to find any malicious code inside it.
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
Pillager is a tool for exporting and decrypting useful data from target computer.
PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.
🕵️ Python project to crawl for JavaScript files and search for secrets like API keys, authorization tokens, hardcoded credentials, etc.
A tool that shows detailed information about named pipes in Windows
A lightweight port-forwarding and socks proxy tool written in Rust 🦀
Plecost - Professional WordPress Security Scanner
Bloodhound Reporting for Blue and Purple Teams
Proofs-of-concept
A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticated …
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
…
1. 状态 failing 为短期内没有更新 2. 可从 new.json 文件获取最近一次新增的CVE项目信息 3. 可从 update.json 文件获取最近一次更新的CVE项目信息 4. 可从年限目录内README.md获取当年完整信息 5. 可从dateLog目录获取当天…
Research papers on Proot-of-Concepts
Automatically Collect POC or EXP from GitHub by CVE ID.
PolyEngine is an evasive PE packer designed for CTF challenges and low-level Windows security education. It focuses on bypassing EDR and AV …
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
PounceKey's is a Accessibility Service keylogger for Android 5 to 15! full launcher stealth. choose between receiving logs via IP, Gmail, or…
An offensive/defense security toolset for discovery, recon and ethical assessment of AI Agents