tallerboy's Stars
moonD4rk/HackBrowserData
Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
bl4de/ctf
My CTF journey since 2015. Stats, writeups, code snippets, notes, challenges.
h3xduck/TripleCross
A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
GhostTroops/scan4all
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
psiinon/open-source-web-scanners
A list of open source web security scanners
VirtualAlllocEx/Create-Thread-Shellcode-Fetcher
This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and download and execute your C2-shellcode which is hosted on your (C2)-webserver.
mvelazc0/defcon27_csharp_workshop
Writing custom backdoor payloads with C# - Defcon 27 Workshop
s0md3v/AwesomeXSS
Awesome XSS stuff
CyberSecurityUP/OSCE3-Complete-Guide
OSWE, OSEP, OSED, OSEE
paradiseduo/ClashXR
A rule based custom proxy with GUI for Mac base on clash.
alphaSeclab/awesome-burp-suite
Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
TheKingOfDuck/fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
SecWiki/windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合