yusufqk's repositories
DetectCobaltStomp
Detects Module Stomping as implemented by Cobalt Strike
AH2021Workshop
Malware development for red teaming workshop
Apihashes
IDA Pro plugin for recognizing known hashes of API function names
Ares
Project Ares is a Proof of Concept (PoC) loader written in C/C++ based on the Transacted Hollowing technique
awesome-ida-x64-olly-plugin
A curated list of IDA x64DBG and OllyDBG plugins.
BokuLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
bootkit
UEFI bootkit: Hardware Implant. In-Progress
C2-Tool-Collection
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
COFFLoader2
Load and execute COFF files and Cobalt Strike BOFs in-memory
CS-Situational-Awareness-BOF
Situational Awareness commands implemented using Beacon Object Files
herpaderping
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
Hypervisor-From-Scratch
Source code of a multiple series of tutorials about the hypervisor. Available at: https://rayanfam.com/tutorials
inject-assembly
Execute .NET in an Existing Process
KaynLdr
KaynLdr is a Reflective Loader written in C/ASM
KernelForge
A library to develop kernel level Windows payloads for post HVCI era
learning-reverse-engineering
This repository contains sample programs written primarily in C and C++ for learning native code reverse engineering.
Malware-analysis-and-Reverse-engineering
Some of my publicly available Malware analysis and Reverse engineering.
midrashim
PT_NOTE to PT_LOAD x64 ELF infector written in Assembly
Nidhogg
Nidhogg is an all-in-one simple to use rootkit for red teams.
Osiris-Sourcecode
Alleged source code leak of Osiris banking trojan
pics
Posters, drawings...
PPLKiller
Protected Processes Light Killer
Ps-Tools
Ps-Tools, an advanced process monitoring toolkit for offensive operations
reactos
A free Windows-compatible Operating System
s6_pcie_microblaze
PCI Express DIY hacking toolkit for Xilinx SP605
Windows-Kernel-Explorer
A free but powerful Windows kernel research tool.
WindowsDllsExport
A list of all the DLLs export in C:\windows\system32\