UPX - the Ultimate Packer for eXecutables

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Converts PE into a shellcode

Keystone assembler framework: Core (Arm, Arm64, Hexagon, Mips, PowerPC, Sparc, SystemZ & X86) + bindings

shellcodeloader

一款后渗透免杀工具，助力每一位像我这样的脚本小子快速实现免杀，支持bypass AV/EDR 360 火绒 Windows Defender Shellcode Loader

Loading Remote AES Encrypted PE in memory , Decrypted it and run it

Multilayered AV/EDR Evasion Framework

CSLoader is a general purpose obfuscation and anti-virus tool based on a reimplementation of the llvm project obfuscator(https://github.com/obfuscator-llvm/obfuscator).

Post-exploitation tool for hiding processes from monitoring applications

A list of python tools to help create an OPSEC-safe Cobalt Strike profile.

Windows对抗沙箱和虚拟机的方法总结

永久免杀加载器移步另一个项目https://github.com/snnxyss/new_in_swor 一个简单内网渗透工具免杀 目前免杀fscan,mimikatz,frp,elevationstation,bypassuac, 一键killAV 。请使用In-Swor(x64版本)360报毒qvm20请更换exe图标资源。

Collection of beacon BOF written to learn windows and cobaltstrike

一些使用过期或者注销证书的技术

Leaked source code of the babuk ransomware by VXUG

A Beacon Object File (BOF) template for Visual Studio

GregsBestFriend process injection code created from the White Knight Labs Offensive Development course

Load static-compiled PE from remote server.

免杀捆绑器，过国内主流杀软。A Bundler bypass anti-virus