Flu0rite's repositories
win-api-tracer-frida
win32 api tracer use frida
amd-ryzen-master-driver-v17-exploit
Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
CobaltstrikeSource
Cobaltstrike4.1 Source
DEFCON-31-Syscalls-Workshop
Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".
EDR-Preloader
An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer
EDRception
A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. Feel free to modiy and DM if you find some bugs :)
ghidra
Ghidra is a software reverse engineering (SRE) framework
gurs
python模拟鼠标滑动轨迹
Hikari
LLVM Obfuscator
Hikari-LLVM15
A fork of Hikari Obfuscator [WIP]
instruction2vec
Efficient Preprocessor of Assembly Code to Detect Software Weakness with CNN
llvm-pass-tutorial
A step-by-step tutorial for building an LLVM sample pass
LOLDrivers
Living Off The Land Drivers
LPAdesktop
LPA Simulator
ShellGhost
A memory-based evasion technique which makes shellcode invisible from process start to end.