Beast code in Giters

luom's starred repositories

Havoc

The Havoc Framework.

Language:GoGPL-3.06372 98 319

auto-cpufreq

Automatic CPU speed & power optimizer for Linux

Language:PythonLGPL-3.05399 41 426

EDR-Telemetry

This project aims to compare and evaluate the telemetry of various EDR products.

Language:Python1453 54 29

realm

A network relay tool

Language:RustMIT1443 17 113

dbxcli

A command line client for Dropbox built using the Go SDK

Language:GoNOASSERTION1040 39 139

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

Language:C++MIT808 18 11

Pluto

Obfuscator based on LLVM 14.0.6

Language:LLVMMIT803 28 47

InlineExecute-Assembly

InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module

Language:C574 17 1

Proxy-Attackchain

Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)

Language:C#482 120

.NetConfigLoader

.net config loader

297 40

Arkari

Yet another llvm based obfuscator based on goron.

Language:LLVMApache-2.0294 8 9

SharpGmailC2

Our Friendly Gmail will act as Server and implant will exfiltrate data via smtp and will read commands from C2 (Gmail) via imap protocol

Language:C#MIT255 10 2

NVDrv

Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.

Language:C++234 4 1

autochk-rootkit

Reverse engineered source code of the autochk rootkit

Language:C192 10 1

hw-call-stack

Use hardware breakpoints to spoof the call stack for both syscalls and API calls

Language:CMIT174 4 1

Elevate-System-Trusted-BOF

Language:C143 50

LoudSunRun

Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven

Language:C133 3 1

Cortex-XDR-Config-Extractor

Cortex XDR Config Extractor

Language:PythonGPL-3.0115 4 1

callstack_spoof

Language:C++111 3 3

Journey-to-McAfee

Language:C110 70

CVE-2023-27532

Exploit for CVE-2023-27532 against Veeam Backup & Replication

Language:C#103 5 4

angryorchard

A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022

Language:C102 70

ToyObfuscator

Toy LLVM obfuscator pass

Language:C++MIT70 4 2

ews-cpp

A C++11 header-only library for Microsoft Exchange Web Services

Language:C++Apache-2.067 12 102

PsNotifRoutineUnloader

This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCreateThreadNotifyRoutine from ESET Security to bypass the driver detection

Language:C++62 30

SuperCMD

Run program as SYSTEM, with TrustedInstaller token if desired

Language:C#GPL-2.051 3 3

ShelbyObfuscator

Obfuscator for llvm 16.0.2

NOASSERTION48 3 3

HookTools

Plugin for Process Hacker 2 ( https://github.com/processhacker2 ), displays system hooks and able to unhook too.

Language:C48 9 3

luom