Beginner's repositories
2022-HW-POC
2022 护网行动 POC 整理
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
Antivirus_R3_bypass_demo
分别用R3的0day与R0的0day来干掉杀毒软件
awesome-browser-exploit
awesome list of browser exploitation tutorials
awesome-windows-kernel-security-development
windows kernel security development
browser-exploitation
A collection of curated resources and CVEs I use for research.
Chaos-me-JavaScript-V8
零基础入门V8引擎漏洞挖掘
CLRvoyance
Managed assembly shellcode generation
Doge-CLRLoad
load assembly executable file in memory
donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
Exploit-Development
Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
go-shellcode
A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
HellsGate
Original C Implementation of the Hell's Gate VX Technique
HWSyscalls
HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
HyperHide
Hypervisor based anti anti debug plugin for x64dbg
jackit
JackIt - Exploit Code for Mousejack
LeakedHandlesFinder
Leaked Windows processes handles identification tool
Process-Hollowing
Great explanation of Process Hollowing (a Technique often used in Malware)
ReflectiveDLLInjection
Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
sRDI
Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
TOEFL-1
托福王炸福利包
UACME
Defeating Windows User Account Control
URLFinder
类似JSFinder的golang实现,一款用于快速提取检测页面中JS与URL的工具,更快更全更舒服
windows-syscalls
Windows System Call Tables (NT/2000/XP/2003/Vista/2008/7/2012/8/10)