HenryChanDC's starred repositories
BOF2shellcode
POC tool to convert CobaltStrike BOF files to raw shellcode
CS_Uploads_Tracker
Aggressor script add-in for CobaltStrike to track file uploads
edr_blocker
Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination IP addresses are parsed based on the server name in TLS Client Hello packet and the provided blocked server name (or blocked string) list in the file.
awesome-readme-generator-tools
收录了一些可以快速创建出精美readme.md的工具集合
BokuLoader
A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
pwcrack-framework
Password Crack Framework
AmsiScanBufferBypass
Bypass AMSI by patching AmsiScanBuffer
dahuaExploitGUI
dahua综合漏洞利用工具
ChromeExtensionInstall
Silently Install Chrome Extension For Persistence
Awesome-CobaltStrike-Defence
Defences against Cobalt Strike
NacosExploit
NacosExploit 命令执行 内存马等利用
Voidgate
A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfvenom) by performing on-the-fly decryption of individual encrypted assembly instructions, thus rendering memory scanners useless for that specific memory page.
EDRNoiseMaker
Detect WFP filters blocking EDR communications
pdf-exploit
pdf exploit 集成
Memory-horse
关于内存马的学习研究支持新手从0到1,从内存马原理,内存马植入 内存马检测 到内存马防御与内存马应急以及内存马查杀全系列java内存马/php/.net/c++/python 喜欢可以点个star 后续持续更新