Pinned Repositories
AceLdr
Cobalt Strike UDRL for memory scanner evasion.
Alcatraz
x64 binary obfuscator
AlgorithmCourse
一份算法教程和leetcode等平台的脑瘫教程
AndrewSpecial
AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
Auto_Wordlists
blackhat-python3
Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate dependency issues involving the implementation of deprecated libraries.
Certipy
Tool for Active Directory Certificate Services enumeration and abuse
ChromeFuzzer
fuzz
cmstplua-uac-bypass
Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.
HwJ
Tools, Code and Notes for Hacking with Jan video series
RnmX's Repositories
RnmX/AceLdr
Cobalt Strike UDRL for memory scanner evasion.
RnmX/Alcatraz
x64 binary obfuscator
RnmX/Auto_Wordlists
RnmX/blackhat-python3
Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate dependency issues involving the implementation of deprecated libraries.
RnmX/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
RnmX/cmstplua-uac-bypass
Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.
RnmX/concealed_code_execution
Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
RnmX/Cronos
PoC for a new sleep obfuscation technique leveraging waitable timers to evade memory scanners.
RnmX/DeathSleep
A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementing page protection changes during no execution.
RnmX/Ekko
Sleep Obfuscation
RnmX/foliage
A proof of concept I developed to improve Gargoyle back in 2018 to achieve true memory obfuscation from position independent code
RnmX/GHHv6
Gray Hat Hacking v6
RnmX/HadesLdr
Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2
RnmX/HWSyscalls
HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
RnmX/inceptor
Template-Driven AV/EDR Evasion Framework
RnmX/InflativeLoading
Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.
RnmX/JuicyPotatoNG
Another Windows Local Privilege Escalation from Service Account to System
RnmX/LethalHTA
Lateral Movement technique using DCOM and HTA
RnmX/maldev-essentials-assignment
Malware Development Essentials Assignment, by sektor7
RnmX/MonikerFun
Demonstrating a simple moniker.
RnmX/NixImports
A .NET malware loader, using API-Hashing to evade static analysis
RnmX/PatchlessCLRLoader
.NET assembly loader with patchless AMSI and ETW bypass
RnmX/RdpStrike
Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
RnmX/Sharp-Suite
Also known by Microsoft as Knifecoat :hot_pepper:
RnmX/Supernova
Real fucking shellcode encryption tool
RnmX/TaskSchedulerMisc
Misc TaskScheduler Plays
RnmX/TitanLdr_forCS
Cobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality.
RnmX/UnmarshalPwn
POC for CVE-2018-0824
RnmX/veracrypt-stealer
VeraCrypt Stealer
RnmX/VulFi
IDA Pro plugin for query based searching within the binary useful mainly for vulnerability research.