luom's starred repositories
GoogleTranslate_IPFinder
谷歌翻译服务器在**大陆的IP地址扫描、测速工具。
MemoryModule
A flexible PE loader, loading module in memory. Most of the functions can be inline, compatible for shellcode.
MemoryModule
Library to load a DLL from memory.
LoudSunRun
Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven
auto-cpufreq
Automatic CPU speed & power optimizer for Linux
Cortex-XDR-Config-Extractor
Cortex XDR Config Extractor
InlineExecute-Assembly
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module
.NetConfigLoader
.net config loader
RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
ToyObfuscator
Toy LLVM obfuscator pass
SharpGmailC2
Our Friendly Gmail will act as Server and implant will exfiltrate data via smtp and will read commands from C2 (Gmail) via imap protocol
angryorchard
A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022
ShelbyObfuscator
Obfuscator for llvm 16.0.2
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.