Processus's repositories
ETWMonitor
Windows notifier tool that detects suspicious connections by monitoring ETW event logs
PsNotifRoutineUnloader
This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCreateThreadNotifyRoutine from ESET Security to bypass the driver detection
UnhookingDLL
This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hollowing
SharpVenoma
CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
Bypass-AV-DirectSyscalls
Scripts permettant de contourner la protection antivirale de Windows Defender via la technique de Direct Syscalls avec une injection de shellcode préalablement obfusqué avec un fonction XOR.
CobaltStrikeBypassDefender
A launcher to load a DLL with xored cobalt strike shellcode executed in memory through process hollowing technique
La-Gamelle
Tous les trucs utilisés dans les Tutos, les shellcodes, les templates, les notes...
DetectEsetHooks
Tool to enumerate ESET hooked functions by parsing the ebehmoni.dll module
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
IndirectSyscalls
A custom reimplementation of indirect syscalls without the use of GetModuleHandleA and GetProcAddress
AD-USERS-ENUM
Enumerate all users and their SID from LDAP
invit-bomber
Script python permettant d'envoyer en masse des invitations sur LinkedIn
CodeCaveInjection
Test d'injection de shellcode dans un fichier PE 64bits
Crowdsec_to_MISP
Simple Python script to extract suspicious IPs from Crowdsec sqlite database and inject them into your MISP
blackarch
An ArchLinux based distribution for penetration testers and security researchers.
Exegol-images
Docker images of the Exegol project
impacket
Impacket is a collection of Python classes for working with network protocols.