Skip to content
View scanfsec's full-sized avatar

Highlights

  • Pro

Block or report scanfsec

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Showing results

PE to shellcode

Python 155 24 Updated Jan 1, 2025

Collection of malware source code for a variety of platforms in an array of different programming languages.

Assembly 16,397 1,844 Updated Nov 25, 2024

Full stack, modern web application template. Using FastAPI, React, SQLModel, PostgreSQL, Docker, GitHub Actions, automatic HTTPS and more.

TypeScript 29,314 5,305 Updated Jan 21, 2025

Fastjson <= 1.2.47 远程命令执行漏洞利用工具及方法

Java 402 74 Updated Jan 24, 2025

A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.html#dirty-vanity-a-new-approach-to-code-injection--edr-bypass…

C 631 84 Updated Dec 23, 2022

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

5,849 1,234 Updated Oct 4, 2024

整理开源的中文大语言模型,以规模较小、可私有化部署、训练成本较低的模型为主,包括底座模型,垂直领域微调及应用,数据集与教程等。

17,880 1,717 Updated Sep 19, 2024

Catcher(捕手) 重点系统指纹漏洞验证工具,适用于外网打点,资产梳理漏洞检查。

Go 273 26 Updated Jun 3, 2024
CSS 1 Updated Apr 30, 2024

Fileless atexec, no more need for port 445

Python 353 45 Updated Mar 28, 2024

🔥🔥hooker是一个基于frida实现的逆向工具包。为逆向开发人员提供统一化的脚本包管理方式、通杀脚本、自动化生成hook脚本、内存漫游探测activity和service、firda版JustTrustMe、disable ssl pinning

JavaScript 3,840 954 Updated Dec 23, 2024

not a reverse-engineered version of the Cobalt Strike Beacon

C 343 154 Updated Apr 3, 2024

Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for North Korean APT InkySquid / ScarCruft / APT37. TTP: Use Mi…

C 468 97 Updated May 16, 2023

C++ self-Injecting dropper based on various EDR evasion techniques.

C 366 66 Updated Feb 11, 2024

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

C 1,570 199 Updated Nov 3, 2024

这是一个 ( QQ Wechat 短信 通话记录 照片 等) 记录导出归档的 大 项目.

1,462 61 Updated Jan 14, 2025

用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入

Java 262 17 Updated Nov 20, 2023

一个浏览器数据(密码|历史记录|Cookie|书签|下载记录)的导出工具,支持主流浏览器。

C# 669 71 Updated Nov 15, 2024

Protected Process Dumper Tool

Go 528 59 Updated Aug 30, 2023

多功能 java agent 内存马

Java 421 51 Updated Oct 8, 2023

A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager

Python 350 91 Updated Oct 13, 2022

微信客户端取证,可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录));支持获取多用户信息,不定期更新新版本偏移,目前支持所有新版本、正式版本

C# 4,283 613 Updated Apr 25, 2024

Mythril is a symbolic-execution-based securty analysis tool for EVM bytecode. It detects security vulnerabilities in smart contracts built for Ethereum and other EVM-compatible blockchains.

Python 3,929 750 Updated Jan 27, 2025

一个高价值漏洞采集与推送服务 | collect valueable vulnerability and push it

Go 1,481 164 Updated Jan 10, 2025

一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool

Java 2,236 204 Updated Jan 10, 2025

Now You See Me, Now You Don't

C++ 895 140 Updated Jan 1, 2025

A shellcode writing toolkit

Python 661 121 Updated Mar 15, 2022

Exploit for CVE-2023-27532 against Veeam Backup & Replication

C# 105 22 Updated Mar 23, 2023

NativePayload_ASM/AsynASM , Injecting Meterpreter Payload bytes into local Process via Delegation Technique [Technique D] + in-memory with delay Changing RWX to X [Bypassing AVs]

C# 5 2 Updated Jun 6, 2023
Next
Showing results