xxxxxyyyy's repositories
beacon
Former attempt at creating a independent Cobalt Strike Beacon
Beacon.dll
Beacon.dll reverse
BetterGetProcAddress
POC of a better implementation of GetProcAddress for ntdll using binary search
chatgpt-web
用 Express 和 Vue3 搭建的 ChatGPT 演示网页
claw
Source code of Claw Key logger previously sold on HackForums
ConPtyShell
ConPtyShell - Fully Interactive Reverse Shell for Windows
CVE-2021-1675
Impacket implementation of CVE-2021-1675
ForkPlayground
An implementation and proof-of-concept of Process Forking.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Havoc
The Havoc Framework
HiddenDesktop
HVNC for Cobalt Strike
impersonate
A windows token impersonation tool
Inline-Execute-PE
Execute unmanaged Windows executables in CobaltStrike Beacons
KaynLdr
KaynLdr is a Reflective Loader written in C/ASM
Kraken
Kraken, a modular multi-language webshell coded by @secu_x11
ldap_shell
AD ACL abuse
Nim-RunPE
A Nim implementation of reflective PE-Loading from memory
No-Consolation
A BOF that runs unmanaged PEs inline
notes
Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.
PEzor
Open-Source PE Packer
PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
RPCSCAN
rpc map scan tool
RunPE-In-Memory
Run a Exe File (PE Module) in memory (like an Application Loader)
SharpBeacon
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
sliver
Adversary Emulation Framework
SyscallPack
BOF and Shellcode for full DLL unhooking using dynamic syscalls
ThreadlessInject-BOF
BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released at BSides Cymru 2023.
yougar0.github.io
漏洞知识库