HHousen's writeups to various HackTheBox machines and challenges from https://hackthebox.com.

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

OneForAll是一款功能强大的子域收集工具

Windows Privilege Escalation Techniques and Scripts

一键提取安卓应用中可能存在的敏感信息。

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

对 The Hacker Playbook 3 的翻译。

Gitbook

A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or set up with Docker.

A collection of awesome one-liner scripts especially for bug bounty tips.

Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

A list of interesting payloads, tips and tricks for bug bounty hunters.

Impacket is a collection of Python classes for working with network protocols.

The great CrackMapExec tool compiled for Windows

A swiss army knife for pentesting networks

各种burp-clj脚本

Burp Extension for a passive scanning JS files for endpoint links.

A python script that finds endpoints in JavaScript files

shellcodeloader

掩日 - 免杀执行器生成工具

远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

Botnet

This is a collection of #botnet source codes, unorganized. For EDUCATIONAL PURPOSES ONLY

Fast passive subdomain enumeration tool.

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)

A cross-platform note-taking & target-tracking app for penetration testers.

Potentially dangerous files

A list of useful payloads and bypass for Web Application Security and Pentest/CTF