#
sh4hin
Follow
Starred repositories
Apache Tomcat 远程代码执行漏洞批量检测脚本(CVE-2025-24813)
Rust Linux Kernel Module designed for LKM rootkit detection
RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It provides a set of enumeration tools to identify security vulne…
Automated environment setup for Bootkit & Rootkit development.
This scanner supports both kernel-mode and user-mode rootkits.
Automated web vulnerability scanning with LLM agents
Obfuscation library based on C++11/14 and metaprogramming
A C++ proof of concept demonstrating the exploitation of Windows Protected Process Light (PPL) by leveraging COM-to-.NET redirection and reflection techniques for code injection. This PoC showcases…
Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
Dynamically resolve API function addresses at runtime in a secure manner.
Spawn a command prompt as SYSTEM from logon screen while protecting against unauthorized access
Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the white paper Certified Pre-Owned.
Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.
LangChain for Go, the easiest way to write LLM-based programs in Go