Ashupup's repositories
AntiAntiVirusNotes
学习免杀的笔记
API-T00L
互联网厂商API利用工具。
APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
Beacon_Source
not a reverse-engineered version of the Cobalt Strike Beacon
BinarySpy
一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.
C2
C2-下一代RAT
C2-Tool-Collection
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
ChatViewTools
红队的微信聊天记录取证工具
CS-AutoPostChain
基于 OPSEC 的 CobaltStrike 后渗透自动化链
darkPulse
darkPulse是一个用go编写的shellcode Packer,用于生成各种各样的shellcode loader,目前免杀火绒,360,360核晶。
DllMainHijacking
Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode
exp-hub
漏洞检测、漏洞利用
HackReport
渗透测试报告/资料文档/渗透经验文档/安全书籍
LdrLockLiberator
For when DLLMain is the only way
LogXj
用于探测Log4j漏洞, 将它POC的威力最大化, POC验证成功后会立即收到目标机器的系统主机名、时间、版本号、用户名、环境变量以及Log4j路径、java版本号、中间件信息等信息.
No_X_Memory_ShellCodeLoader
无可执行权限加载 ShellCode (点点 Star,非常感谢!)
PIGADVulnScanner
检测域内常见一把梭漏洞,包括:NoPac、ZeroLogon、CVE-2022-26923、PrintNightMare
pxplan
CVE-2023-2023
RedTeam_Tools_n_Stuff
Collection of self-made Red Team tools that have come in handy
Rootkit
Rookit and anti rookit on Windows platform
RuoYi-v4.6-vulnerability
RuoYi up to v4.6 was discovered to contain a SQL injection vulnerability via the component /system/dept/edit
Self-Defective-Program
无Windows API的新型恶意程序:自缺陷程序利用堆栈溢出的隐匿稳定攻击技术研究
SharpReflectivePEInjection
reflectively load and execute PEs locally and remotely bypassing EDR hooks
SharpThief
一键窃取文件的图标、资源信息、版本信息、修改时间、数字签名,降低程序熵值
ThreadlessInject-C
This repository implements Threadless Injection in C
VectorKernel
PoCs for Kernelmode rootkit techniques research.