饭醉分子's repositories
S12URootkit
User Mode Windows Rootkit
BokuLoader
A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
fumo_loader
All in one kernel-based DLL injector
idaBingGPTPlugin
Use the free Microsoft bing's gpt with ida pro, to perform free analyzes!
The-MALWARE-Repo
A repository full of malware samples.
.NetConfigLoader
.net config loader
0xUBypass
AntiAV shellcode loader
AtlasLdr
Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls
awesome-opensource-security
A list of interesting open-source security tools, mostly reviewed and commented by me.
BBackupp
Automated iOS Backup Robot
BestEdrOfTheMarket
Little AV/EDR bypassing lab for training & learning purposes
EPT-HOOK
隐藏钩子过PG
GraphStrike
Cobalt Strike HTTPS beaconing over Microsoft Graph API
KDU
Kernel Driver Utility
Kerbeus-BOF
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
LdrLibraryEx
A small x64 library to load dll's into memory.
MalDev23
Malware Dev Course - Fall 2023
memhv
Minimalistic hypervisor with memory introspection capabilities
RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
RemoteTLSCallbackInjection
Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process
SharpReflectivePEInjection
reflectively load and execute PEs locally and remotely bypassing EDR hooks
test4
test4
test5
test5
vixl
AArch32 and AArch64 Runtime Code Generation Library andorid vmp