C0co17ut

C0co17ut's Stars

• Cracked5pider/Ekko

  Sleep Obfuscation

  Language:C66197

• knownsec/KCon

  KCon is a famous Hacker Con powered by Knownsec Team.

  Language:JavaScript4.5k1.4k

• wazuh/wazuh

  Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

  Language:C++10.4k1.6k

• klezVirus/SysWhispers3

  SysWhispers on Steroids - AV/EDR evasion via direct system calls.

  Language:Python1.3k162

• jthuraisamy/SysWhispers2

  AV/EDR evasion via direct system calls.

  Language:Assembly1.5k234

• microsoft/Detours

  Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.

  Language:C++5.1k1k

• M0nster3/RpcsDemo

  关于RPC一些绕EDR的tips

  Language:C15434

• trustedsec/CS-Situational-Awareness-BOF

  Situational Awareness commands implemented using Beacon Object Files

  Language:C1.2k211

• initstring/evil-ssdp

  Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

  Language:Python35969

• INotGreen/SharpScan

  内网资产收集、探测主机存活、端口扫描、域控定位、文件搜索、各种服务爆破（SSH、SMB、MsSQL等）、Socks代理，一键自动化+无文件落地扫描

  Language:C#16515

• HackerCalico/Magic_C2

  红队 C2 框架，使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.

  Language:C++21450

• hasherezade/pe-bear

  Portable Executable reversing tool with a friendly GUI

  Language:C++2.6k159

• InQuest/malware-samples

  A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net

  Language:ActionScript880191

• yzddmr6/SharpAlternativeShellcodeExec

  Alternative Shellcode Execution Via Callbacks Rewrite In C#

  Language:C#8510

• Demonslay335/CryptoTester

  A utility for playing with cryptography, geared towards ransomware analysis.

  25121

• clownfive/CppDevShellcode

  使用Visral Studio开发ShellCode

  Language:C++12513

• activescott/lessmsi

  A tool to view and extract the contents of an Windows Installer (.msi) file.

  Language:C#1.3k150

• mgeeky/msidump

  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.

  Language:Python19018

• horsicq/Detect-It-Easy

  Program for determining types of files for Windows, Linux and MacOS.

  Language:JavaScript7.3k712

• lucasg/Dependencies

  A rewrite of the old legacy software "depends.exe" in C# for Windows devs to troubleshoot dll load dependencies issues.

  Language:C#8.9k723

• scrt/avcleaner

  C/C++ source obfuscator for antivirus bypass

  Language:C1k174

• secretsquirrel/SigThief

  Stealing Signatures and Making One Invalid Signature at a Time

  Language:Python2.1k464

• dnSpy/dnSpy

  .NET debugger and assembly editor

  Language:C#26.3k5.1k

• OpenCTI-Platform/opencti

  Open Cyber Threat Intelligence Platform

  Language:TypeScript6.1k906

• selinuxG/Golin

  弱口令检测、 漏洞扫描、端口扫描（协议识别，组件识别）、web目录扫描、等保模拟定级、自动化运维、等保工具（网络安全等级保护现场测评工具）内置3级等保核查命令、基线核查工具、键盘记录器

  Language:Go1.1k184

• archeryue/cpc

  建党 100 周年！写一个名为 CPC 的 C 编译器，为党庆生！

  Language:C25440

• R4gd0ll/I-Wanna-Get-All

  OA漏洞利用工具

  96277

• snort3/snort3

  Snort++

  Language:C++2.5k536

• Getshell/C2

  C2-下一代RAT

  29334

• BeichenDream/GodPotato

  Language:C#1.7k214