Registers Vectored Exception Handlers by directly manipulating internal LdrpVectorHandlerList structure instead of calling RtlAddVectoredExceptionHandler.

C++ 36 3 Updated Jan 18, 2026

iss4cf0ng / Eden-RAT

An open-source Linux GUI-based Remote Access Tool developed in C# with a Python payload, intended for legitimate penetration testing and reconnaissance tasks.

Python 29 Updated Mar 9, 2026

iss4cf0ng / Elfina

Elfina is a multi-architecture ELF loader written in Rust, supporting x86 and x86-64 binaries.

Rust 41 1 Updated Mar 15, 2026

dazzyddos / lsawhisper-bof

A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, without touching LSASS process memory.

C 284 34 Updated Feb 21, 2026

wietze / lnk-it-up

Project for generating and identifying deceptive LNK files.

Python 308 42 Updated Mar 8, 2026

wbenny / scfw

A cross-platform C++ framework for building Windows shellcode

C++ 164 16 Updated Mar 4, 2026

sliverarmory / beignet

MacOS Shared Library to Shellcode Loader

Assembly 64 4 Updated Feb 23, 2026

sliverarmory / malasada

Linux Shared Library to Shellcode Loader

Assembly 90 10 Updated Feb 15, 2026

An open-source, C#-based remote administration tool (RAT), enabling complete control of a remote Windows machine, designed for legitimate remote administration and security testing of Windows systems.

C# 176 25 Updated Mar 27, 2026

CodeXTF2 / Cobaltstrike_BOFLoader

open source port/reimplementation of the Cobalt Strike BOF Loader as is

C 71 6 Updated Mar 8, 2026

DownWithUp / WarbirdExamples

An example of how to use Microsoft Windows Warbird technology

C 97 10 Updated Apr 23, 2023

RainbowDynamix / GhostKatz

Dump LSASS via physical memory read primitives in vulnerable kernel drivers

C 297 34 Updated Feb 2, 2026

Maldev-Academy / PrefetchFileParser

A lightweight Windows Prefetch file parser to extract programs' execution history

C 69 8 Updated Jan 12, 2026

dirkjanm / adconnectdump

Dump Azure AD Connect credentials for Azure AD and Active Directory

C# 785 99 Updated Aug 26, 2025

201853910 / VMwareWorkstation

手动上传官网的VMwareWorkstation安装包

2,679 377 Updated Mar 12, 2026

kraftdenker / ZAPiXDESK

WhatsApp Desktop Live Forensics - Decryption&Extraction Technique

PowerShell 54 9 Updated Jan 23, 2026

cdxiaodong / tabby_decrypt

tabby密码解密明文输出

Python 1 Updated Jan 11, 2026

wotwot563 / aad_prt_bof

C++ 160 19 Updated Apr 17, 2024

DarkCoderSc / inno-shellcode-example

Run shellcode through InnoSetup code engine.

Inno Setup 74 12 Updated Jun 22, 2023

XenoAtom / XenoAtom.Ansi

Fast, allocation-friendly .NET library to generate, parse, and manipulate ANSI/VT escape sequences (writer, markup, tokenizer, ANSI-aware text utilities).

C# 30 1 Updated Feb 14, 2026

m417z / ntdoc

Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers

Python 401 35 Updated Mar 26, 2026

R3alM0m1X82 / SpecterBroker

Advanced Windows authentication token extraction and decryption tool for red team operations and security research

C# 90 18 Updated Dec 30, 2025

EvanMcBroom / perfect-loader

Load a dynamic library from memory by modifying the native Windows loader

C++ 285 50 Updated Jun 18, 2025

kozmer / sigdream

sigreturn-oriented programming (SROP) based sleep obfuscation poc for Linux

C 68 10 Updated Dec 15, 2025

whokilleddb / ETWListicle

List the ETW provider(s) in the registration table of a process.

C 80 12 Updated Sep 20, 2023

skylot / jadx

Dex to Java decompiler

Java 47,816 5,470 Updated Mar 24, 2026

fastserial / lite3

A JSON-Compatible Zero-Copy Serialization Format

C 781 30 Updated Mar 20, 2026

hwbp / CLR-Unhook

Modern security products (CrowdStrike, Bitdefender, SentinelOne, etc.) hook the nLoadImage function inside clr.dll to intercept and scan in-memory .NET assembly loads. This tool unhooks that functi…

C++ 209 24 Updated Dec 8, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

簞純 qwqdanchun

Achievements