cd9e Goto Github PK

pe_to_shellcode

Converts PE into a shellcode

r77-rootkit

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

ransomware

A POC Windows crypto-ransomware (Academic). Now Ransom:Win32/MauriCrypt.MK!MTB

rathole

A lightweight and high-performance reverse proxy for NAT traversal, written in Rust. An alternative to frp and ngrok.

realblindingedr

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

rebeacon_forclang

Beacon compiled using clang

redis-rogue-server

Redis(<=5.0.5) RCE

remotetlscallbackinjection

Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process

reverse-shell-generator

Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

route_fileter

统计路由器CVE，便于漏洞挖掘

rsmaker

基于rust的免杀、捆绑框架

rules_fork

Repository of yara rules

scan4all

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

scarecrow

ScareCrow - Payload creation framework designed around EDR bypass.

securityresearcher-note

Cover various security approaches to attack techniques and also provides new discoveries about security breaches.

sharpbeacon

CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能

sharpc2

Command and Control Framework written in C#

sharpshellcodeloader_rc4aes

用于解密并加载shellcode，支持RC4和AES两种解密方法，并使用DInvoke来动态调用WinAPI函数，从而尝试绕过某些安全解决方案

sharpwxdump

微信客户端取证，可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录))；支持获取多用户信息，不定期更新新版本偏移，目前支持所有新版本、正式版本

shoggoth

Shoggoth: Asmjit Based Polymorphic Encryptor

sourcepoint

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

spark

✨Spark is a web-based, cross-platform and full-featured Remote Administration Tool (RAT) written in Go that allows you control all your devices anywhere. Spark是一个Go编写的，网页UI、跨平台以及多功能的远程控制和监控工具，你可以随时随地监控和控制所有设备。

stardust

A modern 64-bit position independent implant template

supershell

Supershell C2 远控平台，基于反向SSH隧道获取完全交互式Shell

teardrop

Open-Source Ransomware Project for learning purpose only written in C# (csharp). Dont use it for bad things.

thievingfox

ultimate-rat-collection

For educational purposes only, samples of old & new malware builders including screenshots!

unlinkdll

DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable

usboblivion

USB Oblivion utility designed to erase all traces of (broken) USB-connected drives and CD-ROMs from the registry in Windows XP, Windows 2003, Windows Vista, Windows 7, Windows 8, Windows 10 32/64-bit versions.

vectorkernel

PoCs for Kernel-mode rootkit techniques research.