GP's repositories
SpecialShellcode
将shellcode转换特殊的数据类型,用于过静态免杀
APT-Attack-Simulation
A APT Attack Simulation for APT 29 & Lockbit
atexec-pro
Fileless atexec, no more need for port 445
BokuLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities. By: @0xBoku & @s4ntiago_p
CS-AutoPostChain
基于 OPSEC 的 CobaltStrike 后渗透自动化链
java-memshell-generator
一款支持高度自定义的 Java 内存马生成工具
Jlaive
Antivirus evasion tool (crypter) that converts executables into undetectable batch files.
Kerbeus-BOF
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
Learning-EDR-and-EDR_Evasion
I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning path for me.
new_in_swor
bypassAll静态引擎,如绕过QVM,绕过VT所有静态引擎
npcap
Nmap Project's Windows packet capture and transmission library
MagiskOnWSA
Integrate Magisk root and Google Apps (OpenGApps) into WSA (Windows Subsystem for Android)
oxgenPdb
a Windows kernel Pdb parsing and downloading library that running purely in kernel mode without any R3 programs.
powershell-obfuscation
powershell免杀混淆器,简单有效。A simple and effective powershell obfuscaiton tool bypass Anti-Virus
RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
RedGuard
RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
ROP_ROCKET
ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Syscalls attack, a novel Heaven's Gate, and "shellcodeless" ROP. The framework utilizes emulation and obfuscation to help expand the attack surface.
RTCore64_Vulnerability
Use RTCore64 to map your driver on windows 11.
SearchAvailableExe
寻找可利用的白文件
stink
Stealer in just a few lines with sending to Server / Telegram / Discord. No dependencies, only built-in libraries.
SysWhispers3
SysWhispers on Steroids - AV/EDR evasion via direct system calls.
test
test
VDR
Vulnerable driver research tool, result and exploit PoCs
VMProtect
VMProtect Leaked Source Code
XLL-DROPPER-
XLL DROPPER | Learn to create Native xll Dropper