shincehor

Dictofuscation

Obfuscate the bytes of your payload with an association dictionary

DeadPotato

DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the original GodPotato source code by BeichenDream.

ShadeLoader

ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过

SharpWeb

一个浏览器数据（密码|历史记录|Cookie|书签|下载记录）的导出工具，支持主流浏览器。

Magic_C2

红队 C2 框架，使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.

DojoLoader

Generic PE loader for fast prototyping evasion techniques

RingQ

一款后渗透免杀工具，助力每一位像我这样的脚本小子快速实现免杀，支持bypass AV/EDR 360 火绒 Windows Defender Shellcode Loader

LoaderFly

助力每一位RT队员，快速生成免杀木马

BenevolentLoader

Shellcode loader using direct syscalls via Hell's Gate and payload encryption.

RWX_MEMEORY_HUNT_AND_INJECTION_DV

Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.

no-defender

A slightly more fun way to disable windows defender + firewall. (through the WSC api)

BadExclusionsNWBO

BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR

TrollDump

Process_Ghosting

Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by a file. This is an evasion technique.

RunAsPy

LetMeowIn

A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.

OneLong

简化前期信息收集的繁重任务，协助红队人员快速的信息收集，达到一条龙的效果

Shoggoth

Shoggoth: Asmjit Based Polymorphic Encryptor

GraphSpy

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

CVE-2024-1086

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.

SQL-BOF

Library of BOFs to interact with SQL servers

dicttools

密码字典生成工具，加微信进群及时接收更新信息

BruteUnpackage

Brute force cracking the compressed package | 暴力破解有密码的压缩包

Jigsaw

Hide shellcode by shuffling bytes into a random array and reconstruct at runtime

Shellcode-Hastur

Shellcode Reductio Entropy Tools

atexec-pro

Fileless atexec, no more need for port 445

BackupCreds

A C# implementation of dumping credentials from Windows Credential Manager

Advanced-TLS-Injection

A direct improvement to remote TLS Injection.

Thread-Pool-Injection-PoC

Proof of concept code for thread pool based process injection in Windows.

Evasive-Loader

Evasive loader to bypass static detection