CobaltStrike beacon in rust

This project aims to compare and evaluate the telemetry of various EDR products.

Because AV evasion should be easy.

Simulate the behavior of AV/EDR for malware development training.

EDR Lab for Experimentation Purposes

tidevice can be used to communicate with iPhone device

Security product hook detection

This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCreateThreadNotifyRoutine from ESET Security to bypass the dri…

A high-performance, zero-overhead, extensible Python compiler with built-in NumPy support

C++ Requests: Curl for People, a spiritual port of Python Requests.

Replace the .txt section of the current loaded modules from \KnownDlls\

PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)

The Havoc Framework

Cobalt Strike UDRL for memory scanner evasion.

Obfuscator based on LLVM 14.0.6

Sleep Obfuscation

Simple (relatively) things allowing you to dig a bit deeper than usual.

[WIP] 整理过去我和K8s、容器、虚拟化相关的分享 🧐

Run PowerShell with rundll32. Bypass software restrictions.

Fast Conversion Windows Dynamic Link Library To ShellCode

Template-Driven AV/EDR Evasion Framework

Find, verify, and analyze leaked credentials

Windows memory hacking library

Demos of various injection techniques found in malware

Converts PE into a shellcode

A memory scanning evasion technique

SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications

You shall pass

数据库综合利用工具