Pinned Repositories
Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
ADVobfuscator
Obfuscation library based on C++11/14 and metaprogramming
ai-webshell-detect
机器学习检测webshell
Alaris
A protective and Low Level Shellcode Loader that defeats modern EDR systems.
AllTheThingsExec
Executes Blended Managed/Unmanged Exports
AlternativeShellcodeExec
Alternative Shellcode Execution Via Callbacks
Antimalware-Research
Research on Anti-malware and other related security solutions
antispy
AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.
ARCInject
Overwrite a process's recovery callback and invoke a crash to execute
ARL
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
daffodi1's Repositories
daffodi1/antispy
AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.
daffodi1/From-System-authority-to-Medium-authority
Penetration test
daffodi1/TiEtwAgent
PoC memory injection detection agent based on ETW, for offensive and defensive research purposes
daffodi1/ARL
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
daffodi1/CobaltstrikeSource
Cobaltstrike4.1 Source
daffodi1/PassUAC
daffodi1/r77-rootkit
Ring 3 rootkit with single file installer and fileless persistence that hides processes, files, network connections, etc.
daffodi1/InterceptionDemo
Sample showing the use of CoGetInterceptor
daffodi1/PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual.
daffodi1/gitbook
daffodi1/DynamicWrapperEx
x64 Registration-Free In-Process COM Automation Server.
daffodi1/VsCacheCleaner
:broom: Clear the Visual Studio solution cache, free up your disk space!
daffodi1/pafish
Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do.
daffodi1/incbin
Include binary files in C/C++
daffodi1/DuckMemoryScan
检测绝大部分所谓的内存免杀马
daffodi1/juicy_2
juicypotato for win10 > 1803 & win server 2019
daffodi1/Callback_Shellcode_Injection
POCs for Shellcode Injection via Callbacks
daffodi1/ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
daffodi1/XSSTRON
Electron JS Browser To Find XSS Vulnerabilities Automatically
daffodi1/WinObjEx64
Windows Object Explorer 64-bit
daffodi1/BOFs
Collection of Beacon Object Files
daffodi1/gdrv-loader
Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities) to load a unsigned driver
daffodi1/ning
GuruReader iOS APP
daffodi1/Web-Fuzzing-Box
Web Fuzzing Box - Web 模糊测试字典与一些Payloads,主要包含:弱口令暴力破解、目录以及文件枚举、Web漏洞...字典运用于实战案例:https://gh0st.cn/archives/2019-11-11/1
daffodi1/CowInjecter
滥用cow机制进行全局注入
daffodi1/avcleaner
C/C++ source obfuscator for antivirus bypass
daffodi1/cpp-implant
A simple implant showcasing modern C++
daffodi1/building-c2-implants-in-cpp
The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogunlab).
daffodi1/TelemetrySourcerer
Enumerate and disable common sources of telemetry used by AV/EDR.
daffodi1/COM_Mapper
A tool to create COM class/interface relationships in neo4j