C0co17ut's Stars
Cracked5pider/Ekko
Sleep Obfuscation
knownsec/KCon
KCon is a famous Hacker Con powered by Knownsec Team.
wazuh/wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
klezVirus/SysWhispers3
SysWhispers on Steroids - AV/EDR evasion via direct system calls.
jthuraisamy/SysWhispers2
AV/EDR evasion via direct system calls.
microsoft/Detours
Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.
M0nster3/RpcsDemo
关于RPC一些绕EDR的tips
trustedsec/CS-Situational-Awareness-BOF
Situational Awareness commands implemented using Beacon Object Files
initstring/evil-ssdp
Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.
INotGreen/SharpScan
内网资产收集、探测主机存活、端口扫描、域控定位、文件搜索、各种服务爆破(SSH、SMB、MsSQL等)、Socks代理,一键自动化+无文件落地扫描
HackerCalico/Magic_C2
红队 C2 框架,使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.
hasherezade/pe-bear
Portable Executable reversing tool with a friendly GUI
InQuest/malware-samples
A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
yzddmr6/SharpAlternativeShellcodeExec
Alternative Shellcode Execution Via Callbacks Rewrite In C#
Demonslay335/CryptoTester
A utility for playing with cryptography, geared towards ransomware analysis.
clownfive/CppDevShellcode
使用Visral Studio开发ShellCode
activescott/lessmsi
A tool to view and extract the contents of an Windows Installer (.msi) file.
mgeeky/msidump
MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
horsicq/Detect-It-Easy
Program for determining types of files for Windows, Linux and MacOS.
lucasg/Dependencies
A rewrite of the old legacy software "depends.exe" in C# for Windows devs to troubleshoot dll load dependencies issues.
scrt/avcleaner
C/C++ source obfuscator for antivirus bypass
secretsquirrel/SigThief
Stealing Signatures and Making One Invalid Signature at a Time
dnSpy/dnSpy
.NET debugger and assembly editor
OpenCTI-Platform/opencti
Open Cyber Threat Intelligence Platform
selinuxG/Golin
弱口令检测、 漏洞扫描、端口扫描(协议识别,组件识别)、web目录扫描、等保模拟定级、自动化运维、等保工具(网络安全等级保护现场测评工具)内置3级等保核查命令、基线核查工具、键盘记录器
archeryue/cpc
建党 100 周年!写一个名为 CPC 的 C 编译器,为党庆生!
R4gd0ll/I-Wanna-Get-All
OA漏洞利用工具
snort3/snort3
Snort++
Getshell/C2
C2-下一代RAT
BeichenDream/GodPotato