Borja Merino (BorjaMerino)

BorjaMerino

Geek Repo

Company:@BorjaMerino

Location:Spain (León)

Home Page:http://www.shelliscoming.com/

Github PK Tool:Github PK Tool

Borja Merino's repositories

Pazuzu

Pazuzu: Reflective DLL to run binaries from memory

Windows-One-Way-Stagers

Windows Stagers to circumvent restrictive network environments

Language:AssemblyStargazers:58Issues:4Issues:0

PlcInjector

Modbus stager in assembly and some scripts to upload/download data to the holding register of a PLC

Language:AssemblyStargazers:44Issues:5Issues:0

DNS-Polygraph

Tool designed to study the answers of your DNS resolver and make easier the identification of techniques such as DNS Hijacking/Poisoning

Language:C#License:GPL-3.0Stargazers:27Issues:5Issues:0

reflectPatcher

Python script to patch the reflective stub in a DLL

Language:PythonStargazers:24Issues:5Issues:0

DoublePulsar-Volatility

Volatility plugin to help identify DoublePulsar implant by listing the array of pointers SrvTransaction2DispatchTable from the srv.sys driver.

Hidden-Cobra-Proxy

Nmap NSE script to detect the proxy component of the Hidden Cobra APT attributed to North Korean government

Language:LuaStargazers:6Issues:1Issues:0

metasploit-framework

Metasploit Framework

Language:RubyLicense:NOASSERTIONStargazers:5Issues:2Issues:0

SheLLVM

A collection of LLVM transform and analysis passes to write shellcode in regular C

Language:C++License:NCSAStargazers:3Issues:1Issues:0

MlwScripts

Scripts for malware analysis

Language:PowerShellStargazers:2Issues:1Issues:0

Cobaltstrike-Detection

This repo will contain the core detection, only for Cobaltstrike's leaked versions. Non-leaked version detections wont be shared

Language:CLicense:BSD-2-ClauseStargazers:1Issues:0Issues:0

Cyber-Defence

Information released publicly by NCC Group's Cyber Defence team

Language:PythonStargazers:1Issues:1Issues:0

Diamorphine

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x (x86 and x86_64)

Language:CLicense:NOASSERTIONStargazers:1Issues:1Issues:0

hollows_hunter

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

Language:CLicense:BSD-2-ClauseStargazers:1Issues:1Issues:0

InfinityHook

Hook system calls, context switches, page faults and more.

Language:C++Stargazers:1Issues:1Issues:0

rvmi

rVMI - A New Paradigm For Full System Analysis

Language:CStargazers:1Issues:1Issues:0

stuff

Repository for no purpose

Language:RubyStargazers:1Issues:3Issues:0

advisories

Advisories and Proofs of Concept by BlackArrow

Language:PythonLicense:MITStargazers:0Issues:1Issues:0

Brute-Ratel-C4-Community-Kit

This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)

Language:PowerShellLicense:GPL-3.0Stargazers:0Issues:1Issues:0

HyperDbg

The Source Code of HyperDbg Debugger 🐞

Language:CLicense:GPL-3.0Stargazers:0Issues:0Issues:0
Language:CStargazers:0Issues:1Issues:0

pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

Language:C++License:BSD-2-ClauseStargazers:0Issues:0Issues:0

pivotnacci

A tool to make socks connections through HTTP agents

Language:PythonLicense:AGPL-3.0Stargazers:0Issues:0Issues:0

Revenant

Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework

Language:CStargazers:0Issues:0Issues:0

SigThief

Stealing Signatures and Making One Invalid Signature at a Time

Language:PythonLicense:BSD-3-ClauseStargazers:0Issues:1Issues:0
Language:AssemblyLicense:GPL-3.0Stargazers:0Issues:0Issues:0

ThreatIntelligenceDiscordBot

Gets updates from various clearnet domains and ransomware threat actor domains

Language:PythonLicense:MITStargazers:0Issues:0Issues:0

transacted_hollowing

Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging

Language:CLicense:MITStargazers:0Issues:1Issues:0

webshell

This is a webshell open source project

Language:PHPLicense:GPL-3.0Stargazers:0Issues:1Issues:0

xknow_infosec

Random Stuff for Cyber Security Incident Response

Stargazers:0Issues:0Issues:0