kevin worst's starred repositories
unicorn
Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.
awesome-linux-rootkits
awesome-linux-rootkits
Windows10-CustomKernelSigners
Load self-signed drivers without TestSigning or disable DSE. Transferred from https://github.com/DoubleLabyrinth/Windows10-CustomKernelSigners
Intensio-Obfuscator
Obfuscate a python code 2.x and 3.x
EmbedInHTML
Embed and hide any file in an HTML file
DllToShellCode
Fast Conversion Windows Dynamic Link Library To ShellCode
InvisiblePersistence
Persisting in the Windows registry "invisibly"
AggressorAssessor
Aggressor scripts for phases of a pen test or red team assessment
CVE-2019-0859-1day-Exploit
CVE-2019-0859 1day Exploit
Sigma-Hunting-App
A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
Homework-of-Powershell
powershell codes of my blog.
malware_decoders
Static based decoders for malware samples
CVE-2023-38646
Automatic Tools For Metabase Exploit Known As CVE-2023-38646
code-injection
A collection of methods of Code Injection on Windows