后渗透阶段在域内利用 ATA 进行信息侦查（Abusing ATA for domain reconnaissance during the post-exploitation stage.）

List of Command&Control (C2) software

Sniff-NG — Python TUI tool for network scanning, ARP spoofing, and MITM attacks on local networks. Fast, user-friendly, with auto dependency install. For educational and penetration testing use only.

MITMRouter helps automate the setup of a Linux-based router for IoT device traffic analysis and SSL/TLS interception, allowing secure communications to be decrypted and analyzed. Ideal for research…

A tool for harvesting sysadmin credentials in Linux

The provided Python program, Inject-EXE.py, allows you to combine a malicious executable with a legitimate executable, producing a single output executable. This output executable will contain both…

Python program Fileless-PE.py generates a Python script (PEloader.py) to load a DLL or EXE file from a given URL. It provides functionality to specify a method to execute if the file is a DLL. The …

Advanced Chromium Credentials Auditor Suite - A professional toolkit for security audits, decryption, and modular exfiltration (Telegram/Discord) on Windows.

Vanilla LCE intended as an upstream base for other projects. Originally based on a WIP version of TU19.

A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assignments.

Turn your Python application into an Android APK

cSploit - The most complete and advanced IT security professional toolkit on Android.

Script collection to bypass Network Access Control (NAC, 802.1x)

successor of GWPE