Robert Wilson's repositories
akamai-security-research
This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.
BestEdrOfTheMarket
Little AV/EDR bypassing lab for training & learning purposes
BugChecker
SoftICE-like kernel debugger for Windows 11
CSharp-Alt-Shellcode-Callbacks
A collection of (even more) alternative shellcode callback methods in CSharp
CVE-2022-42046
CVE-2022-42046 Proof of Concept of wfshbr64.sys local privilege escalation via DKOM
Dirty-Vanity
A POC for the new injection technique, abusing windows fork API to evade EDRs.
dnSpy
Unofficial revival of the well known .NET debugger and assembly editor, dnSpy
DonPAPI
Dumping DPAPI credz remotely
Dragnmove
Infect Shared Files In Memory for Lateral Movement
edr-internals
Tools for analyzing EDR agents
EVTX-ETW-Resources
Event Tracing For Windows (ETW) Resources
HardHatC2
A c# Command & Control framework
macOS-Security-Research
macOS Security Research
min-sized-rust
🦀 How to minimize Rust binary size 📦
NimPlant
A light-weight first-stage C2 implant written in Nim.
pics
File formats dissections and more...
razy_importer
Rust implementation of lazy_importer
re-sysinternals-suite
Code from process of reversing Sysinternals Suite for educational purposes, with videos to associate them
RedditC2
Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic look legit.
RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
RustHound
Active Directory data collector for BloodHound written in rust. 🦀
SCPA
Sophisticated cyber penetration attacks is a series of advanced techniques, notes and guidance that will help you to prepare as a hacker on your journey.
sliver
Adversary Emulation Framework
standardlib
A complete standardlib for c for once
SyscallTables
Windows NT x64 Syscall tables
Venom
Venom is a library that meant to perform evasive communication using stolen browser socket