reloc2

followers

following

stars

Metaverse

Hangchow

reloc2's repositories

reloc2

low level reverse engineer

1 10

uacm-dev

Defeating Windows User Account Control

Language:CBSD-2-Clause100

adversary_emulation_library

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

Language:CApache-2.0000

al-khaser

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Language:C++GPL-2.0000

APT_REPORT

Interesting APT Report Collection And Some Special IOC

Language:Python000

AtlasLdr

Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls

Language:C++000

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

Language:PowerShellApache-2.0000

exploit-db

exploit-db

010

flare-vm

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

Language:PowerShellApache-2.0000

malware-analysis

malware-analysis

010

malware-development

malware-development

Language:C++010

ChromeKatz-dev

Dump cookies directly from Chrome process memory

BSD-3-Clause000

cobalt-strike-beacon-dev

not a reverse-engineered version of the Cobalt Strike Beacon

Language:C000

EDRSandblast

Language:C000

Evasion-Escaper

Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environment or sandbox, and to pass all such checks successfully.

Language:C++Apache-2.0000

go-exploit-dev

A Go-based Exploit Framework

Apache-2.0000

JARVIS

JARVIS, a system to connect LLMs with ML community

Language:PythonMIT000

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Language:GoMIT000

osmedeus

A Workflow Engine for Offensive Security

Language:GoMIT000

PoolParty

A set of fully-undetectable process injection techniques abusing Windows Thread Pools

Language:C++BSD-3-Clause000

PPLmedic

Dump the memory of any PPL with a Userland exploit chain

Language:C++000

rust-dev

rust dev

Language:Rust010

rust-shellcode

:japanese_ogre: windows-rs shellcode loader :japanese_ogre:

Language:RustMIT000

syzkaller

syzkaller is an unsupervised coverage-guided kernel fuzzer

Language:GoApache-2.0000

tiny_tracer

A Pin Tool for tracing API calls etc

Language:C++000

udmp-parser

A Windows user minidump C++ parser library.

Language:C++MIT000

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

Language:DockerfileMIT000

Win32_Offensive_Cheatsheet

Win32 and Kernel abusing techniques for pentesters

Language:C++MIT000

WPeChatGPT

A plugin for IDA that can help to analyze binary file and it uses OpenAI's ChatGPT training API.

Language:Python000

x64dbg-xfg-marker

An x64dbg plugin which marks XFG call signatures as data

Language:CGPL-3.0000