Pack/Encrypt/Obfuscate ELF + SHELL scripts

Astral-PE is a low-level mutator (headers obfuscator) for native Windows PE files (x32/x64)

IngressNightmare POC. world first remote exploitation and with multi-advanced exploitation methods. allow on disk exploitation. CVE-2025-1974 https://www.wiz.io/blog/ingress-nginx-kubernetes-vulner…

10 Lessons to Get Started Building AI Agents

Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.

The open source Tines / Splunk SOAR alternative for security and IT engineers. Built on simple YAML templates for integrations and response-as-code.

Autonomous Privilege Escalation using OpenAI

A Model Context Protocol server for IDA

MCP Server for Ghidra

Helping Ethical Hackers use LLMs in 50 Lines of Code or less..

✨ Fully autonomous AI Agents system capable of performing complex penetration testing tasks

⏣ Control your infrastructure with AI.

Oh my tmux! My self-contained, pretty & versatile tmux configuration made with 💛🩷💙🖤❤️🤍

The AI Code Editor

Assortment of scripts and tools for our Blackhat EU 2024 talk

Python tool to generate crafted JWTs, exploiting the algorithm confusion vulnerability in JWT signature validation. Useful for security testing.

An example reference design for a proposed BOF PE

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

A collection of malware techniques.

PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection rules, simulate logs, and undertake various security tasks,…

firedrill is a malware simulation harness for evaluating your security controls

A XPath injection demonstration application

Vulnerable REST API with OWASP top 10 vulnerabilities for security testing

Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.

Automate the creation of a lab environment complete with security tooling and logging best practices

kernel callback removal (Bypassing EDR Detections)

Apache Tomcat 远程代码执行漏洞批量检测脚本(CVE-2025-24813)

his repository contains an automated Proof of Concept (PoC) script for exploiting **CVE-2025-24813**, a Remote Code Execution (RCE) vulnerability in Apache Tomcat. The vulnerability allows an attac…