Small and highly portable detection tests based on MITRE's ATT&CK.

The pattern matching swiss knife

windows-kernel-exploits Windows平台提权漏洞集合

Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, T…

Official git repo for iodine dns tunnel

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

linux-kernel-exploits Linux平台提权漏洞集合

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

The future of online communications.

Open-Source Shellcode & PE Packer

Situational Awareness commands implemented using Beacon Object Files

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

A Tox-based instant messaging and video chat client.

Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation

Cobalt Strike UDRL for memory scanner evasion.

助力每一位RT队员，快速生成免杀木马

Execute unmanaged Windows executables in CobaltStrike Beacons

Windows Elevation(持续更新)

A BOF that runs unmanaged PEs inline

Collection of Beacon Object Files

Threat Intel IoCs + bits and pieces of dark matter

Some demos to bypass EDRs or AVs by 78itsT3@m

A Beacon Object File (BOF) is a compiled C program, written to a convention that allows it to execute within a Beacon process and use internal Beacon APIs. BOFs are a way to rapidly extend the Beac…

Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW

more conveniently Visual-Studio-BOF-template