bravery9's repositories
an0nud4y.github.io
Personal Security Blog
ApricusFindEvil
检测查杀java内存马
AtlasLdr
Reflective x64 loader implemented using dynamic indirect syscalls
BounceBack
↕️🤫 Stealth redirector for your red team operation security
CVE-2024-1086
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
FilelessAgentMemShell
无需文件落地Agent内存马生成器
Handly
Abuse leaked token handles.
Hide-CobaltStrike
Hide your CobaltStrike PRO
InfoSec-Black-Friday
All the deals for InfoSec related software/tools this Black Friday
invictus
OSED Practice binary
IoDllProxyLoad
DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
IronSharpPack
IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then reflective load the C# project.
JNDI-Injection-Exploit-Plus
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
KubeHound
Kubernetes Attack Graph
NetExec
The Network Execution Tool
PoolParty
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
PPPYSO
proof-of-concept for generating Java deserialization payload | Proxy MemShell 反序列化概念验证 | 动态代理实现内存马
PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual.
RandomPOCs
Repo that holds random POCs
RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
RTCore64_Vulnerability
Use RTCore64 to map your driver on windows 11.
SharpRODC
To audit the security of read-only domain controllers
suo5
一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool
TianGongLab.github.io
破壳平台文档系统
VectorKernel
PoCs for Kernel-mode rootkit techniques research.
Vulhub-Reproduce
一个Vulhub漏洞复现知识库
Windows-Penetration-Testing
Technical notes, AD pentest methodology, list of tools, scripts and Windows commands that I find useful during internal penetration tests