binary

concepts

format string

classes

tools

  • autobuf - buffer overflow exploit tool
  • auto-root-exploit - find exploits on linux kernel
  • autosploit - automated mass exploiter
  • beef - the browser exploitation framework project
  • beeroot - find a way to escalate our privilege
  • dccwbypassuac - windows 8.1 and 10 uac bypass abusing winsxs in "dccw.exe"
  • format string exploit - dead simple format string exploit payload generator
  • gef - gdb enhanced features for exploit devs & reversers
  • gtfobins - gtfobins is a curated list of unix binaries that can be used to bypass local security restrictions in misconfigured systems.
    • lolbas - same thing for windows
  • invoke-psimage - embeds a powershell script in the pixels of a png file
  • keefarce - extracts passwords from a keepass 2.x database, directly from memory
  • koadic - c3 com command & control
  • meterssh - inject shellcode into memory and tunnel port over ssh
  • online x86 assembler - online x86 intel assembler
  • powershell-suite - collection of powershell utilities
  • pwntools - ctf framework and exploit development library
  • uacme - defeating windows user account control
  • winpwnage - elevate, uac bypass, privilege escalation, dll hijack techniques