Anti-ghosts's Stars
XTLS/Xray-core
Xray, Penetrates Everything. Also the best v2ray-core, with XTLS support. Fully compatible configuration.
ZuodaoTech/everyone-can-use-english
人人都能用英语
SagerNet/sing-box
The universal proxy platform
apernet/hysteria
Hysteria is a powerful, lightning fast and censorship resistant proxy.
mack-a/v2ray-agent
Xray、Tuic、hysteria2、sing-box 八合一一键脚本
libnyanpasu/clash-nyanpasu
Clash Nyanpasu~(∠・ω< )⌒☆
beautifier/js-beautify
Beautifier for javascript
jason5ng32/MyIP
The best IP Toolbox. Easy to check what's your IPs, IP geolocation, check for DNS leaks, examine WebRTC connections, speed test, ping test, MTR test, check website availability, whois search and more! || 🇨🇳 可能是最好用的IP工具箱。轻松检查你的 IP,IP 地理位置,检查DNS泄漏,检查 WebRTC 连接,速度测试,ping 测试,MTR测试,检查网站可用性,查询 Whois 信息等等。
ComodoSecurity/openedr
Open EDR public repository
chika0801/sing-box-examples
sing-box 配置示例
davincifans101/pinduoduo_backdoor_detailed_report
Maybe the most detailed analysis of pdd backdoors
knownsec/shellcodeloader
shellcodeloader
AabyssZG/WebShell-Bypass-Guide
从零学习Webshell免杀手册
microsoft/MSRC-Security-Research
Security Research from the Microsoft Security Response Center (MSRC)
0xrawsec/whids
Open Source EDR for Windows
netero1010/EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
Velocidex/WinPmem
The multi-platform memory acquisition tool.
eversinc33/Banshee
Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.
BeneficialCode/WinArk
Windows Anti-Rootkit Tool
Cracked5pider/LdrLibraryEx
A small x64 library to load dll's into memory.
RoomaSec/RmTools
蓝队应急工具
EvilBytecode/EDR-XDR-AV-Killer
Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
superleeyom/blog
:bookmark: 个人博客仓库,用于记录一些幼稚的想法和脑残的瞬间,欢迎 star、watch,该仓库为个人博客,请不要提 issue ,该仓库后端参考了 @yihong0618 的 gitblog 项目,前端参考了@LoeiFy 的 Mirror 项目,感谢!
marcosd4h/sysmonx
SysmonX - An Augmented Drop-In Replacement of Sysmon
rainerzufalldererste/windows_x64_shellcode_template
An easily modifiable shellcode template for Windows x64 written in C
gh0stkey/PPT
关于我对外做过分享的议题PPT
Nero22k/cve-2023-29360
Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver
jstrosch/sclauncher
A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files from shellcode.
FuzzySecurity/BHUSA-2023
Crowdfense/CVE-2024-21338
Windows AppLocker Driver (appid.sys) LPE