Powerful yet simple to use screenshot software 🖥️ 📸

Reverse engineering focusing on x64 Windows.

Open EDR public repository

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes

Loading Remote AES Encrypted PE in memory , Decrypted it and run it

Brand New Code Injection for Windows

An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer

Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of encryption methods, including AES, XOR, DES, TLS, RC4, RSA …

Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls

Use hardware breakpoint to dynamically change SSN in run-time

A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.