antonioCoco

followers

following

stars

Italy

https://splintercod3.blogspot.com/

antonioCoco's starred repositories

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT57583 18080

reactos

A free Windows-compatible Operating System

Language:CGPL-2.014190 3490

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Language:PowerShellNOASSERTION8435 394 59

yara

The pattern matching swiss knife

Language:CBSD-3-Clause7824 318 1051

UACME

Defeating Windows User Account Control

Language:CBSD-2-Clause6018 278 114

al-khaser

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Language:C++GPL-2.05598 239 100

evil-winrm

The ultimate WinRM shell for hacking/pentesting

Language:RubyLGPL-3.04269 780

donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Language:CBSD-3-Clause3318 82 102

ScyllaHide

Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide

Language:C++GPL-3.03262 88 113

thc-tips-tricks-hacks-cheat-sheet

Various tips & tricks

Language:Shell2873 103 2

PrivescCheck

Privilege Escalation Enumeration Script for Windows

Language:PowerShellBSD-3-Clause2674 75 47

HyperDbg

State-of-the-art native debugging tool

Language:CGPL-3.02643 87 116

ReflectiveDLLInjection

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

Language:CBSD-3-Clause2600 125 15

InfinityHook

Hook system calls, context switches, page faults and more.

Language:C++2305 91 21

sandbox-attacksurface-analysis-tools

Set of tools to analyze Windows sandboxes for exposed attack surface.

Language:C#Apache-2.01973 115 34

PersistenceSniper

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte

Language:PowerShellNOASSERTION1827 40 12

PrintSpoofer

Abusing impersonation privileges through the "Printer Bug"

Language:C1754 21 9

Vanara

A set of .NET libraries for Windows implementing PInvoke calls to many native Windows APIs with supporting wrappers.

Language:C#MIT1733 40 358

SysWhispers

AV/EDR evasion via direct system calls.

Language:AssemblyApache-2.01720 60 8

oleviewdotnet

A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container

Language:C#GPL-3.01070 53 32

injdrv

proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

Language:CMIT1063 45 23

VBA-RunPE

A VBA implementation of the RunPE technique or how to bypass application whitelisting.

Language:VBAMIT779 27 8

Invoke-SocksProxy

Socks proxy, and reverse socks server using powershell.

Language:PowerShellMIT770 23 7

LocalPotato

Language:C++MIT658 5 2

DetoursNT

Detours with just single dependency - NTDLL

Language:C++MIT584 26 3

PPLmedic

Dump the memory of any PPL with a Userland exploit chain

Language:C++318 7 3

ATPMiniDump

Evading WinDefender ATP credential-theft

Language:CBSD-3-Clause254 5 1

WinSpy

Enhanced version of the classic Spy++ tool

Language:C++MIT158 10 2

minidump

Custom implementation of DbgHelp's MiniDumpWriteDump function. Uses static syscalls to replace low-level functions like NtReadVirtualMemory.

Language:C115 3 1

authenticode-parser

Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.

Language:CMIT15 4 4