This repository demonstrates a remote script swapping vulnerability in web applications, using a coin flip to randomly serve either a safe or a malicious PowerShell script from two different URLs.

Harness the power of the command line on Windows.

bash/ → Linux automation, text parsing, recon helpers python/ → Network scripting, tool-output parsers, HTTP probes powershell/ → Windows enumeration, automation, security utilities c/ → Systems ...

A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...