EgeBalci

Security Researcher

PRODAFTDen Haag, Netherlands

Pinned Repositories

amber
Reflective PE packer.
Language:Go1.4k 44 25221
Cminer
Cminer is a tool for enumerating the code caves in PE files.
Language:C++154 12 138
deoptimizer
Evasion by machine code de-optimization.
Language:Rust407 6 126
EGESPLOIT
EGESPLOIT is a golang library for malware development
Language:Go342 29 2105
evilreplay
Seamless remote browser session control
Language:TypeScript218 3 118
HERCULES
HERCULES is a special payload generator that can bypass antivirus softwares.
Language:Go601 59 22154
Hook_API
Assembly block for hooking windows API functions.
Language:Assembly93 6 011
IAT_API
Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.
Language:Assembly77 12 015
sgn
Shikata ga nai (仕方がない) encoder ported into go with several improvements
Language:Go1.9k 28 22239
WSAAcceptBackdoor
Winsock accept() Backdoor Implant.
Language:C118 6 023

EgeBalci's Repositories

EgeBalci/Cminer
Cminer is a tool for enumerating the code caves in PE files.
Language:C++154 12 138
EgeBalci/IAT_API
Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.
Language:Assembly77 12 015
EgeBalci/syscall_api
Language:Assembly37 2 011
EgeBalci/crc32_api
Assembly API block that uses CRC32 for resolving Windows API function addresses
Language:Assembly18 4 06
EgeBalci/spy-extension
A Chrome extension that will steal literally everything it can
Language:TypeScript4 0 01
EgeBalci/Alcatraz
x64 binary obfuscator
Language:C++3 1 0
EgeBalci/AtomPePacker
A Highly capable Pe Packer
Language:C3 1 02
EgeBalci/pwncat
Fancy reverse and bind shell handler
Language:Python2 1 01
EgeBalci/TurkoRat
Fully undetected grabber (grabs wallets, passwords, cookies, modifies discord client etc.)
2
EgeBalci/conpty-go
Language:Go1 2 0
EgeBalci/encrypted-stream
A Golang library that transforms any net.Conn or io.ReadWriter stream to an encrypted and/or authenticated stream
Language:Go1 1 0
EgeBalci/Havoc
The Havoc Framework
Language:Go1 1 0
EgeBalci/rdi-rs
Rusty Reflective DLL Injection - A small reflective loader in Rust 4KB in size
Language:Rust1 1 0
EgeBalci/cdnstrip
Go module for striping CDN IP ranges.
Language:Go2 01
EgeBalci/Chaos-Rootkit
x64 ring0 Rootkit with Process Hiding and Privilege Escalation Capabilities
Language:C1 0
EgeBalci/COFFLoader
Language:C1 0
EgeBalci/conpty
Windows Pseudo Console (ConPTY) for Golang
Language:Go1 0
EgeBalci/golang-struct-to-elastic-mapping
https://github.com/olivere/elastic/issues/694
Language:Go1 0
EgeBalci/HiddenDesktop
HVNC for Cobalt Strike
Language:C1 0
EgeBalci/Hikari
LLVM Obfuscator
0 0
EgeBalci/Hikari-LLVM15
A fork of Hikari Obfuscator [WIP]
0 0
EgeBalci/libxdisasm
Simple and small library that allows disassembly of raw bytes for multiple architectures
Language:C1 0
EgeBalci/neko
A self hosted virtual browser that runs in docker and uses WebRTC.
Language:Go1 01
EgeBalci/pakkero
Pakkero is a binary packer written in Go made for fun and educational purpose. Its main goal is to take in input a program file (elf binary, script, even appimage) and compress it, protect it from tampering and intrusion.
EgeBalci/poe-trading-bot
Trading bot for Path of Exile
EgeBalci/rellume
Lift machine code to performant LLVM IR
EgeBalci/tiny11builder
Scripts to build a trimmed-down Windows 11 image.
Language:Batchfile0 0
EgeBalci/vflow
Enterprise Network Flow Collector (IPFIX, sFlow, Netflow) from Verizon Media
EgeBalci/VMProtect-Source
Source of VMProtect (NOT OFFICIALLY)
Language:C++1 0
EgeBalci/VX-API
Collection of various malicious functionality to aid in malware development
Language:C++1 01