S12cybersecurity

Pinned Repositories

Admin2Sys
Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM
Language:C++47 3 117
DumpLsass
C++ Code to perform a MiniDump of lsass.exe
Language:C++32 1 23
GhostShell
Interactive shell to execute commands anonymously using Proxychains and Tor
Language:Shell35 1 17
HTTP_POST-Login-BruteForce
HTTP_POST Login BruteForce
Language:Python34 1 010
NinjaInjector
Classic Process Injection with Memory Evasion Techniques implemantation
Language:C++64 3 07
RDPCredentialStealer
RDPCredentialStealer it's a malware that steal credentials provided by users in RDP using API Hooking with Detours in C++
Language:C++236 8 135
RedNeuron
RedNeuron - Framework Creator of Malware focused in attacking Windows but created to execute framework in Linux 👾
Language:C++67 2 39
S12URootkit
User Mode Windows Rootkit
Language:C++54 3 315
ShadowByte-Botnet
Complete Botnet Infrastucture with Malicious C&C Server And Malware Agents to infect Windows OS
Language:C++43 1 315
WinDefenderKiller
Windows Defender Killer | C++ Code Disabling Permanently Windows Defender using Registry Keys
Language:C++434 5 162

S12cybersecurity's Repositories

S12cybersecurity/WinDefenderKiller
Windows Defender Killer | C++ Code Disabling Permanently Windows Defender using Registry Keys
Language:C++434 5 162
S12cybersecurity/RDPCredentialStealer
RDPCredentialStealer it's a malware that steal credentials provided by users in RDP using API Hooking with Detours in C++
Language:C++236 8 135
S12cybersecurity/NinjaInjector
Classic Process Injection with Memory Evasion Techniques implemantation
Language:C++64 3 07
S12cybersecurity/S12URootkit
User Mode Windows Rootkit
Language:C++54 3 315
S12cybersecurity/Admin2Sys
Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM
Language:C++47 3 117
S12cybersecurity/ShadowByte-Botnet
Complete Botnet Infrastucture with Malicious C&C Server And Malware Agents to infect Windows OS
Language:C++43 1 315
S12cybersecurity/DumpLsass
C++ Code to perform a MiniDump of lsass.exe
Language:C++32 1 23
S12cybersecurity/PrivilegeEscalationClass
C++ Privilege Escalation Class to execute Process As Admin from User and Process as NT AUTHORITY SYSTEM from Admin
Language:C++18 1 02
S12cybersecurity/ExplorerUACStealer
ExplorerUACStealer it's a malware that steal credentials provided by users in UAC Auth in explorer using API Hooking with Detours in C++
Language:C++14 1 03
S12cybersecurity/PDFTypeSpoofing
PDF Icon File Type Spoofer
Language:C++11 2 05
S12cybersecurity/AdminX
AdminX it's a Malware to execute process as some users from a Windows OS
Language:C++7 1 03
S12cybersecurity/AntiVM
C++ Class with various techniques to detect the execution in a virtualized environment
Language:C++7 2 02
S12cybersecurity/FreeThreadHijacking
Perform Thread Hijacking Shellcode Injection without OpenProcess and OpenThread mapping all the free handles in memory
Language:C++7 2 03
S12cybersecurity/ThreatHijacking
Threat Hijacking Simple Implementation
Language:C++5 2 04
S12cybersecurity/VirtualAlloc-Implementation
My Own VirtualAlloc Implementation to use as alternative unknown for all the defense solutions of VirtualAlloc Win32 API Function
Language:C++5 1 02
S12cybersecurity/AntiDebugging
Anti Debugging C++ Class
Language:C++4 1 01
S12cybersecurity/KernelProcessesTerminator
Terminate Processes from a Kernel Driver receiving the process to kill via simple userland application
Language:C++4
S12cybersecurity/Reflective-DLL
Reflective DLL Injection Implementation
Language:C++4 1 01
S12cybersecurity/FreeLoaderInjector
Typical Process Injection using Opened Handle Process, RWX Memory Space
Language:C++3 1 01
S12cybersecurity/IATHooking
Import Address Table Hooking Implementation
Language:C++3 1 01
S12cybersecurity/IPCObjects
C++ Code to perform IPC (Inter Process Connection) to share C++ Objects/Structures with other processes
Language:C++3 2 02
S12cybersecurity/KernelEventMonitor
Monitoring Process Creation/Termination, Thread Creation/Termination and Image Load Notifications from a Kernel Driver
Language:C++3 2 0
S12cybersecurity/MapFreeMemoryHandles
Find all type of handles free in Windows Memory
Language:C++3 2 01
S12cybersecurity/RemoteFunctionPatcher
Patch (block) whatever function you want in a remote process. Adding a ret instruction at the first memory address of this function, the target function will be exited automatically all the times called by this process
Language:C++3 3 03
S12cybersecurity/ResurrectedMalware
Malware Implant to Simulate various Resurretion Techniques
Language:C++3 1 01
S12cybersecurity/SysmonDetox
C++ Class with offensive Red Team techniques to target Sysmon
Language:C++3 2 01
S12cybersecurity/HideProcessesDKOM
Taking advantatge of Direct Kernel Object Manipulation to hide process from the EPROCESS structure
Language:C++22
S12cybersecurity/RWXFinder
Find Windows RWX Memory Regions depending on the memory space needed
Language:C++2 1 01
S12cybersecurity/SecurityDetox
Detect and Delete Security Products
Language:C++2 1 01
S12cybersecurity/SimpleDriver
Simple C++ Windows Kernel Driver
Language:C++1