Ondrik8's repositories
Terminator
Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
A1forensic
PowerShell script to help Incident Responders discover adversary persistence mechanisms.
DFIR-Detection-Engineering
Digital Forensics Incident Response and Detection engineering: Análisis forense de artefactos comunes y no tan comunes. Técnicas anti-forense y detección de técnicas utilizadas por actores maliciosos para la evasión de sistemas de protección y monitorización.
EvilCrowRF_Custom_Firmware_CC1101_FlipperZero
This firmware is an alternative to the EvilCrowRF default firmware. Module: CC1101 - Compatible Flipper Zero file.
awesome-python
A curated list of awesome Python frameworks, libraries, software and resources
BounceBack
↕️🤫 Stealth redirector for your red team operation security
burp-vps-proxy
This BurpSuite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
dll-hijack-by-proxying
Exploiting DLL Hijacking by DLL Proxying Super Easily
ExplorerPersist
Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when it's get loaded into the explorer process , our malicoius code get executed
FlavorTown
Various ways to execute shellcode
HiddenDesktop2
HVNC for Cobalt Strike
Microsoft-Activation-Scripts
A Windows and Office activator using HWID / KMS38 / Online KMS activation methods, with a focus on open-source code and fewer antivirus detections.
nuclei-templates
All Nuclei Templates
PhoenixC2
Command & Control-Framework created for collabaration in python3
RecyclePersist
implementation of Persistence via Recycle Bin by adding "open\command" subkey to the "HKCR\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shell" key and changing its value to the implant path
reverse-shell
Reverse Shell as a Service
sf2
Antivirus Signature Search Toolkit
spy-extension
A Chrome extension that will steal literally everything it can
Stompy_change_file_create_time
Timestomp Tool to flatten MAC times with a specific timestamp
superman
🤖 Kill The Protected Process 🤖
Villain
Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy for working as a team.
VolWeb
A centralized and enhanced memory analysis platform
xeno-rat
Xeno-RAT is an open-source remote access tool (RAT) developed in C#, providing a comprehensive set of features for remote system management. Has features such as HVNC, live microphone, reverse proxy, and much much more!
XiebroC2
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能