cloudwindby

obfus.h

Macro-header for compile-time C obfuscation (tcc, win x86/x64)

DVIA-v2

Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penetration testing skills in a legal environment. This project is developed and maintained by @prateekg147. The vulnerabilities and solutions covered in this app are tested up to iOS 11. The current version is writen in Swift and has the following vulnerabilities.

Offensive-Resources

A Huge Learning Resources with Labs For Offensive Security Players

windows-security-internals

A repository for additional files related to the book Windows Security Internals with PowerShell from No Starch Press.

opentrace

A cross-platform GUI wrapper for NextTrace. Bringing you the familiar traceroute experience. OpenTrace 是 NextTrace 的跨平台 GUI 界面，带来您熟悉但更强大的用户体验。

FalconHound

FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log aggregation tool.

Nightmangle

Cerberus

A C++ tool to unstrip Rust/Go binaries (ELF and PE)

ELFEN

ELFEN: Automated Linux Malware Analysis Sandbox

bindiff

Quickly find differences and similarities in disassembled code

ShellGhost

A memory-based evasion technique which makes shellcode invisible from process start to end.

PatchGuardBypass

Bypassing PatchGuard on modern x64 systems

Supershell

Supershell C2 远控平台，基于反向SSH隧道获取完全交互式Shell

LOLDrivers

Living Off The Land Drivers

HeapCrypt

Encypting the Heap while sleeping by hooking and modifying Sleep with our own sleep that encrypts the heap

ZwProcessHollowing

ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption

Windows-Non-Paged-Pool-Overflow-Exploitation

Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CVE-2020-17087 and an off-by-one overflow

graal

GraalVM compiles Java applications into native executables that start instantly, scale fast, and use fewer compute resources 🚀

Browser_Exploits

A collection of browser exploitation codes from Singular Security Lab.

vmtaint

Full-VM taint analysis with Xen, Intel(R) Processor Trace and Triton.

libipt

libipt - an Intel(R) Processor Trace decoder library

hv

Lightweight Intel VT-x Hypervisor.

HardHatC2

A C# Command & Control framework

SharpDPAPI

SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.

SharpChromium

.NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.

Warp

Warp is a modern, Rust-based terminal with AI built in so you and your team can build great software, faster.

DeimosC2

DeimosC2 is a Golang command and control framework for post-exploitation.

TelemetrySourcerer

Enumerate and disable common sources of telemetry used by AV/EDR.

SMBLibrary

Free, Open Source, User-Mode SMB 1.0/CIFS, SMB 2.0, SMB 2.1 and SMB 3.0 server and client library

alerting-detection-strategy-framework

A framework for developing alerting and detection strategies for incident response.