Chronoss3's repositories
AMSI-BYPASS
"AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
Anti-Debug
Golang Simple Anti Debugger & Anti Http Debugger & Anti Vm. Anti Virtual Machine, Anti Sandboxie.
AVEvasionCraftOnline
An online AV evasion platform written in Springboot (Golang, Nim, C) supports embedded, local and remote loading of Shellocde methods.
BadExclusionsNWBO
BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
BestEdrOfTheMarket
Little AV/EDR bypassing lab for training & learning purposes
BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
chisel
A fast TCP/UDP tunnel over HTTP
CipherRun
CipherRun is an ethical hacking tool used to execute shellcode easily while bypassing antivirus solutions.
DynamicMSBuilder
A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation
github-c2
github API - pull
gocheck
DefenderCheck but blazingly fast™
HorizonLoad
A Reverse-Proxy/Load Balancer that can be used to obfuscate your backend architecture. Supply an unlimited amount of servers (theoretically,nothing is infinite). Built on C# for blazing fast performance. There will be room for improvement. However this works with any web servable content.
IPPrintC2
PoC for using MS Windows printers for persistence / command and control via Internet Printing
jeringuilla
Process injection framework in C#. It uses dynamic function loading using delegates and AES-encryption for strings and payloads
Nami
Command & Control (C2) framework written in Go
NimReflectiveLoader
NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.
no-defender
A slightly more fun way to disable windows defender. (through the WSC api)
obfuscatornative
PE bin2bin obfuscator
PoolParty
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
privacy.sexy
Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy
RemoteTLSCallbackInjection
Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process
reverst
Reverse Tunnels in Go over HTTP/3 and QUIC
RustPacker
Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.
SharpNtdllOverwrite
Overwrite ntdll.dll's ".text" section to bypass API hooking. Getting the clean dll from disk, Knowndlls folder, a debugged process or a URL
SharpObfuscate
Obfuscate payloads using IPv4, IPv6, MAC or UUID strings
SharpSelfDelete
PoC to self-delete a binary in C#
terylene
The decentralized botnet architecture
virustotal-vm-blacklist
yep full list of virustotal machines, THIS IS THE ORIGINAL REPO, it was forked from someone else because this repo got deleted like a year ago.
Windows-PE-Packer
🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engineering.
wipemychat
Deletes your messages for everyone in Public and Private Telegram chats (group chats).