Pinned Repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
ADVobfuscator
Obfuscation library based on C++11/14 and metaprogramming
AES
C++ AES implementation
Antivirus-Artifacts
Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
Antivirus_R3_bypass_demo
分别用R3的0day与R0的0day来干掉杀毒软件
AV_Evasion_Tool
掩日 - 免杀执行器生成工具
awesome-rat
RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.
bypass-av-note
免杀技术大杂烩---乱拳也打不死老师傅
BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
MyKernelHunter
学习内核的一个小demo
IndiaZhangSan's Repositories
IndiaZhangSan/MyKernelHunter
学习内核的一个小demo
IndiaZhangSan/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
IndiaZhangSan/ADVobfuscator
Obfuscation library based on C++11/14 and metaprogramming
IndiaZhangSan/AES
C++ AES implementation
IndiaZhangSan/Antivirus-Artifacts
Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
IndiaZhangSan/AV_Evasion_Tool
掩日 - 免杀执行器生成工具
IndiaZhangSan/bypass-av-note
免杀技术大杂烩---乱拳也打不死老师傅
IndiaZhangSan/capstone
Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.
IndiaZhangSan/cmakeconverter
This project aims to facilitate the conversion of Visual Studio to CMake projects.
IndiaZhangSan/CobaltStrikeScan
Scan files or process memory for CobaltStrike beacons and parse their configuration
IndiaZhangSan/DLLHijackTest
DLL and PowerShell script to assist with finding DLL hijacks
IndiaZhangSan/EDRs
IndiaZhangSan/exploits
IndiaZhangSan/HackSysExtremeVulnerableDriver
HackSys Extreme Vulnerable Windows Driver
IndiaZhangSan/lessmsi
A tool to view and extract the contents of an Windows Installer (.msi) file.
IndiaZhangSan/minhook
The Minimalistic x86/x64 API Hooking Library for Windows
IndiaZhangSan/mmLoader
A library for loading dll module bypassing windows PE loader from memory (x86/x64)
IndiaZhangSan/obfy-1
A tiny C++ obfuscation framework
IndiaZhangSan/red_team_tool_countermeasures
IndiaZhangSan/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
IndiaZhangSan/ShellCodeFramework
绕3环的shellcode免杀框架
IndiaZhangSan/SigThief
Stealing Signatures and Making One Invalid Signature at a Time
IndiaZhangSan/SimpleShellcodeInjector
SimpleShellcodeInjector receives as an argument a shellcode in hex and executes it. It DOES NOT inject the shellcode in a third party application.
IndiaZhangSan/spectre
A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.
IndiaZhangSan/SysWhispers
AV/EDR evasion via direct system calls.
IndiaZhangSan/SysWhispers2_x86
X86 version of syswhispers2 / x86 direct system call
IndiaZhangSan/ThreadStackSpoofer
Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.
IndiaZhangSan/win11React
Win 11 in React 💻🌈⚡
IndiaZhangSan/Windows-API-Hashing
This is a simple example and explanation of obfuscating API resolution via hashing
IndiaZhangSan/wow64pp
A modern c++ implementation of windows heavens gate