Pinned Repositories
COM-Hunter
COM Hijacking VOODOO
CPPPractice
C/C++练手
defcon27_csharp_workshop
Writing custom backdoor payloads with C# - Defcon 27 Workshop
DllNotificationInject
A passive-triggered method for remote code injection.
free-programming-books-zh_CN
:books: 免费的计算机编程类中文书籍,欢迎投稿
grab_beacon_config
NimScan
🚀 Fast Port Scanner 🚀
p2p
🖥️ Remote Desktop P2P based. Portable, No configuration or installation needed, communicate your endpoint to the peer, and vice versa, press connect and enjoy. 🖥️
selfMimikatz
自不量力的mimikatz分离计划
vcpkg
C++ Library Manager for Windows, Linux, and MacOS
GooWen's Repositories
GooWen/awesome-java-security
Java安全☞代码审计/漏洞研究/武器化
GooWen/BofRoast
Beacon Object Files for roasting Active Directory
GooWen/BypassAnti-Virus
免杀姿势学习、记录、复现。
GooWen/cornershot
Amplify network visibility from multiple POV of other hosts
GooWen/Cronos-Rootkit
Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
GooWen/CustomKeyboardLayoutPersistence
Achieve execution using a custom keyboard layout
GooWen/CVE-2022-21882
win32k LPE
GooWen/CVE-2022-21907
Windows HTTP协议栈远程代码执行漏洞 CVE-2022-21907
GooWen/DonPAPI
Dumping DPAPI credz remotely
GooWen/ImitateCobaltStrikeShellcode
Imitate CobaltStrike's Shellcode Generation
GooWen/javaweb_security_study_notes
java安全的学习笔记
GooWen/jd-shopper
京东自动下单 (自动登录,指定时间预约商品,商品补货监控,自动加购物车,自动下单)
GooWen/KillDefender
A small POC to make defender useless by removing its token privileges and lowering the token integrity
GooWen/LdrLoadDll-Unhooking
LdrLoadDll Unhooking
GooWen/LeakedHandlesFinder
Leaked Windows processes handles identification tool
GooWen/manual-syscall-detect
A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.
GooWen/merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
GooWen/minidump-1
Custom implementation of DbgHelp's MiniDumpWriteDump function. Uses static syscalls to replace low-level functions like NtReadVirtualMemory.
GooWen/Nim-RunPE
A Nim implementation of reflective PE-Loading from memory
GooWen/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
GooWen/pentest-note
渗透测试☞经验/思路/想法/总结/笔记/. . .
GooWen/PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual.
GooWen/RecycledGate
Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll
GooWen/SharpLoadLibrary
An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.
GooWen/ShellcodeTemplate
A easily modifiable shellcode template for Windows x64/x86
GooWen/speakeasy
Windows kernel and user mode emulation.
GooWen/SyscallPack
BOF and Shellcode for full DLL unhooking using dynamic syscalls
GooWen/T.D.P
Using Thread Description To Hide Shellcode
GooWen/ucxxrt
The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.
GooWen/VeraCryptThief
Extracting clear-text passwords from VeraCrypt.exe using API hooking