Ap3x's starred repositories
ShellGhost
A memory-based evasion technique which makes shellcode invisible from process start to end.
defcon27_csharp_workshop
Writing custom backdoor payloads with C# - Defcon 27 Workshop
Terminator
Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
windows-defender-remover
A tool which is uses to remove Windows Defender in Windows 8.x, Windows 10 (every version) and Windows 11.
community-threats
A place to share attack chains for testing people, process, and technology with the entire community. The largest, public library of adversary emulation and adversary simulation plans! #ThreatThursday
EnterprisePurpleTeaming
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
ransomware_map
Map tracking ransomware, by OCD World Watch team
pyMalleableC2
Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.
AH2021Workshop
Malware development for red teaming workshop
PE-Obfuscator
PE obfuscator with Evasion in mind
GregsBestFriend
GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
MineSweeper
Windows user-land hooks manipulation tool.
python-sdb
Pure Python parser for Application Compatibility Shim Databases (.sdb files)
IAT-Tracer
An automation plugin for Tiny-Tracer framework to trace functions directly out of the executable's import table.
CustomEntryPoint
Select any exported function in a dll as the new dll's entry point.
BOF_Development_Docker
A VSCode devcontainer for development of COFF files with batteries included.
MalleableC2Parser
A library to parse, modify, and implement Malleable C2 profiles
BugBountyBot
Bug Bounty Bot is a Discord bot created to assist hackers with common tactics, techniques, and procedures while tackling multiple programs.