QAQM8oO's Stars
EdgeSecurityTeam/EHole
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
EASY233/Finger
一款红队在大量的资产中存活探测与重点攻击系统指纹探测工具
infosec-au/altdns
Generates permutations, alterations and mutations of subdomains and then resolves them
shmilylty/OneForAll
OneForAll是一款功能强大的子域收集工具
CodeXTF2/ScreenshotBOF
An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memory.
RowTeam/SharpDecryptPwd
SharpDecryptPwd source, To Decrypt Navicat,Xmanager,Filezilla,Foxmail,WinSCP,etc
Fody/Fody
Extensible tool for weaving .net assemblies
icsharpcode/SharpZipLib
#ziplib is a Zip, GZip, Tar and BZip2 library written entirely in C# for the .NET platform.
janoglezcampos/llvm-yx-callobfuscator
LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.
redteamsocietegenerale/DLLirant
DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.
joxeankoret/diaphora
Diaphora, the most advanced Free and Open Source program diffing tool.
TheCruZ/kdmapper
KDMapper is a simple tool that exploits iqvw64e.sys Intel driver to manually map non-signed drivers in memory
fjqisba/E-Decompiler
用来辅助分析易语言程序的IDA插件
DreamSoule/ollvm17
Obfuscation LLVM 17
icyguider/Shhhloader
Syscall Shellcode Loader (Work in Progress)
yaklang/yakit
Cyber Security ALL-IN-ONE Platform
demongodYY/cpp_WmiListenUsb
Usb devices monitor
Jinjinov/Usb.Events
Subscribe to the Inserted and Removed events to be notified when a USB drive is plugged in or unplugged, or when a USB device is connected or disconnected. Usb.Events is a .NET Standard 2.0 library and uses WMI on Windows, libudev on Linux and IOKit on macOS.
thereisnotime/xxUSBSentinel
Windows anti-forensics USB monitoring tool.
fwxs/usb_monitor
Monitor USB devices connections and disconnections.
Eric-Canas/USBMonitor
USBMonitor is an easy-to-use cross-platform library for USB device monitoring that simplifies tracking of connections, disconnections, and examination of connected device attributes on both Windows and Linux, freeing the user from platform-specific details or incompatibilities.
pybind/pybind11
Seamless operability between C++11 and Python
0xsp-SRD/mortar
evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
RythmStick/AMSITrigger
The Hunt for Malicious Strings
YOLOP0wn/POSTDump
frkngksl/Shoggoth
Shoggoth: Asmjit Based Polymorphic Encryptor
w1u0u1/minidump
Custom implementation of DbgHelp's MiniDumpWriteDump function. Uses static syscalls to replace low-level functions like NtReadVirtualMemory.
nettitude/ShellcodeMutator
d35ha/CallObfuscator
Obfuscate specific windows apis with different apis
WithSecureLabs/C3
Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.