binlmmhc's repositories
AD-Attack-Defense
Active Directory Security For Red & Blue Team
Autopsy-Plugins
Autopsy Python Plugins
ViperMonkey
A VBA parser and emulation engine to analyze malicious macros.
nishang
Nishang - Offensive PowerShell for penetration testing and offensive security.
AES
Understanding AES & Rijndael
awesome-malware-analysis
A curated list of awesome malware analysis tools and resources.
theZoo
A repository of LIVE malwares for your own joy and pleasure
macro_pack
macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.
google-ctf
Google CTF
unicorn
Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
pics
Posters, drawings...
Richkware
Framework for building Windows malware, written in C++
pysmb
pysmb is an experimental SMB/CIFS library written in Python. It implements the client-side SMB/CIFS protocol (SMB1 and SMB2) which allows your Python application to access and transfer files to/from SMB/CIFS shared folders like your Windows file sharing and Samba folders.
BitcoinClipboardMalware
Detect a bitcoin address in the clipboard and replace it by one written in the program.
kms-activate
Microsoft Windows/Office 一键激活工具,基于kms.jm33.me的KMS服务器
wePWNise
WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application control and exploit mitigation software.
awesome-vmp
虚拟机分析相关资料
uncompyle2
Python 2.7 decompiler
AntiDebugging
AntiDebugging sample sources written in C++
upload-labs
一个帮你总结所有类型的上传漏洞的靶场
ADACLScanner
Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory
how2heap
A repository for learning various heap exploitation techniques.
Win32-OpenSSH
Win32 port of OpenSSH
CVE-2018-8120
CVE-2018-8120 Windows LPE exploit
ConfuserEx-Unpacker
A dynamic confuserex unpacker that relies on invoke for most things
MemoryDump
memory dump Plugin for ida pro 7.0 7.1
checkwindowosversion
check windows version, and judge the windows bits
amsiscanner
A C/C++ implementation of Microsoft's Antimalware Scan Interface
HITCON-Training
For Linux binary Exploitation
enyelkm
LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.