Pinned Repositories
Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
ADVobfuscator
Obfuscation library based on C++11/14 and metaprogramming
ai-webshell-detect
机器学习检测webshell
Alaris
A protective and Low Level Shellcode Loader that defeats modern EDR systems.
AllTheThingsExec
Executes Blended Managed/Unmanged Exports
AlternativeShellcodeExec
Alternative Shellcode Execution Via Callbacks
Antimalware-Research
Research on Anti-malware and other related security solutions
antispy
AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.
ARCInject
Overwrite a process's recovery callback and invoke a crash to execute
ARL
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
daffodi1's Repositories
daffodi1/PPID-Spoofing
POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritting ntdll:LdrInitializeThunk with shellcode.
daffodi1/herpaderping
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
daffodi1/CcRemote
这是一个基于gh0st远程控制的项目,使自己更深入了解远控的原理,采用VS2017,默认分支hijack还在修改不能执行,master分支的项目可以正常的运行的,你可以切换到该分支查看可以执行的代码
daffodi1/WAF-bypass
daffodi1/SeasideBishop
A C port of b33f's UrbanBishop
daffodi1/my_tsrc_paper
向TSRC投稿的文章,对应的pdf,代码和思维导图
daffodi1/Space-Invaders
A simple Space Invaders game in JavaFX. For more information visit my YouTube channel
daffodi1/ADVobfuscator
Obfuscation library based on C++11/14 and metaprogramming
daffodi1/delete2SYSTEM
Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM
daffodi1/DotNetDebug
A simple POC to demonstrate the power of .NET debugging for injection
daffodi1/Mapping-Injection
Just another Windows Process Injection
daffodi1/injection-1
Windows process injection methods
daffodi1/Antimalware-Research
Research on Anti-malware and other related security solutions
daffodi1/RedPeanut
RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.
daffodi1/diagtrack
daffodi1/Telemetry
WINDOWS TELEMETRY权限维持
daffodi1/obfy
A tiny C++ obfuscation framework
daffodi1/SuperWordlist
基于实战沉淀下的各种弱口令字典
daffodi1/WindowsRpcClients
This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System from 7 to Windows 10.
daffodi1/WSMan-WinRM
A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object
daffodi1/csgo-dma-overlay
A basic CS:GO ESP utilising DMA and HDMI-Overlay
daffodi1/c_examples
examples of doing stuff in c
daffodi1/ConfigPersist
Modifies machine.config for persistence after installing signed .net assembly onto GAC
daffodi1/DccwBypassUAC
Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".
daffodi1/com-research
Research into COM
daffodi1/microsoft-diagcab-rce-poc
Proof of concept about a path traversal vulnerability in Microsoft's Diagcab technology that could lead to remote code execution
daffodi1/injection
daffodi1/VBA-RunPE
A VBA implementation of the RunPE technique or how to bypass application whitelisting.
daffodi1/key08.com
web security tools source list from Hax Wiki
daffodi1/CasperStager
PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.