classic130's repositories
ADPT
DLL proxying for lazy people
awesome-english-ebooks
经济学人(含音频)、纽约客、卫报、连线、大西洋月刊等英语杂志免费下载,支持epub、mobi、pdf格式, 每周更新
awesome-forensics
A curated list of awesome forensic analysis tools and resources
awesome-security
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
bsprishtina-2024-maldev-workshop
BSides Prishtina 2024 Malware Development and Persistence workshop
bypass_bilibili
绕过bilibili apk的反frida机制
cover-agent
CodiumAI Cover-Agent: An AI-Powered Tool for Automated Test Generation and Code Coverage Enhancement! 💻🤖🧪🐞
CreateProcess
A small PoC that creates processes in Windows
CVE-2024-22120-RCE
Time Based SQL Injection in Zabbix Server Audit Log --> RCE
CVE-2024-36877
Exploit POC for CVE-2024-36877
evilBPF
Weaponizing the Linux Kernel (Hide Files/PID, SSH backdoors, SSL Sniffer, ...) by poking around eBPF/XDP
GhostlyHollowingViaTamperedSyscalls
Implementing the ghostly hollowing PE injection technique using tampered syscalls.
hw-call-stack
Use hardware breakpoints to spoof the call stack for both syscalls and API calls
IP-Hunter
Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process
Jigsaw
Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
JsRuntimeHost
The JsRuntimeHost is a library that provides cross-platform C++ JavaScript hosting for any JavaScript engines with Node-API support such as Chakra, V8, or JavaScriptCore.
KillWxapkg
自动化反编译微信小程序,小程序安全评估工具,发现小程序安全问题,自动解密,解包,可还原工程目录,支持Hook,小程序修改
libcoro
C++20 coroutine library
OffensiveCon24-uefi-task-of-the-translator
OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
Office-Tool
Office Tool Plus localization projects.
prompt-injection-defenses
Every practical and proposed defense against prompt injection.
Rust-Hells-Gate
Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust
themida-unmutate
Static deobfuscator for Themida/WinLicense/Code Virtualizer's mutation-based obfuscation.
VMProtect_leak
VMProtect source code leak (incomplete, some important files are still missing, but you can still see it as a reference on how to virtualize the code)
webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
ZeroHVCI
Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling without admin permissions or kernel drivers.