C programs for sockets, reverse shell, shellcode execution, and process injection.

DLL injection with Microsoft detours

Phantom Keylogger is an advanced, stealth-enabled keystroke and visual intelligence gathering system.

Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.

react2shell CVE-2025-55182 PoC

Evasion kit for Cobalt Strike

Usermode exploit to bypass any AC using a 0day shatter attack.

Malicious PixelCode is a security research project that demonstrates a covert technique for encoding executable files into pixel data and storing them inside images or videos. A lightweight loader …

Scripts and examples for "From Day Zero to Zero Day" by Eugene Lim.

A collection of Assembly language practice codes focused on understanding system calls, memory architecture, and low-level mechanics.

Indirect-Shellcode-Executor expoits the miss-configuration/vulnerability present on the API Windows method ReadProcessMemory discovered by DarkCoderSc. It exploits the nature of the in/out pointer …

protector & obfuscator & code virtualizer

Session Desktop - A Decentralized, Onion Routed, Private Messenger

Corelan Repository for mona.py

A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl

Detonate malware on VMs and get logs & detection status

A POC that shows basic protection method for your software. Packages to bytes, encrypts with XOR, saves to TMP file and opens/runs.

A Sliver C2 modification utility that enhances operational stealth by renaming protobuf definitions, regenerating protocol buffers, updating Go references, and resolving method call collisions. Des…

Educational Linux privilege escalation script for CTFs/OSCP. Explains WHAT/WHY/HOW for every vulnerability found. Highlights critical findings with red alerts. Extended mode default: cloud metadata…

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

This telegram bot is a template for a shop 🏪 where users can replenish their balance and buy goods.

Cybersecurity research results. Simple C/C++ and Python implementations

A Very Cool Process Injector That supports both Shellcode injection and dll injection

RAT tools and malware builders generate trojan clients with hidden startup and encryption. Features like assembly changers and mutex improve stealth, while downloader modules ensure additional payl…

Thread scheduling stealth method using APC with encrypted shellcode

C# Data Collector for BloodHound

Living Off The Land Drivers

Common library used by SharpHound.