Pinned Repositories
ADR
ADR is a trojan that retrieves all information on the computer and all data stored in applications using chormuim. It recovers cookies, tokens, passwords and saved bank cards. This malware is undetectable by Windows Defender, Chrome, Virustotal (4/71).
AntiAntiVirusNotes
学习免杀的笔记
awesome-vmp
虚拟化保护(VMP壳)分析相关资料
awesome-windows-kernel-security-development
windows kernel security development
Base64ShellLoader
分离ShellCode加载
Basic-Video-Call
Sample app to join/leave a channel, mute/unmute, enable/disable the video, and switch between front/rear cameras.
bysh
Shell to bypass cmd usage restrictions on Windows.
chapter
Pick_Yello
ShellCodeBuildandloadexe
这是一个shellcode简单的示例demo,使目标exe程序转换为shellcode可执行程序的一个demo【并不打算后期维护】,两年前写的,我发现被工作磨平了对技术的探索,今天翻到发现的。
irohaneABC's Repositories
irohaneABC/ShellCodeBuildandloadexe
这是一个shellcode简单的示例demo,使目标exe程序转换为shellcode可执行程序的一个demo【并不打算后期维护】,两年前写的,我发现被工作磨平了对技术的探索,今天翻到发现的。
irohaneABC/Base64ShellLoader
分离ShellCode加载
irohaneABC/Pick_Yello
irohaneABC/ADR
ADR is a trojan that retrieves all information on the computer and all data stored in applications using chormuim. It recovers cookies, tokens, passwords and saved bank cards. This malware is undetectable by Windows Defender, Chrome, Virustotal (4/71).
irohaneABC/AntiAntiVirusNotes
学习免杀的笔记
irohaneABC/awesome-vmp
虚拟化保护(VMP壳)分析相关资料
irohaneABC/awesome-windows-kernel-security-development
windows kernel security development
irohaneABC/Basic-Video-Call
Sample app to join/leave a channel, mute/unmute, enable/disable the video, and switch between front/rear cameras.
irohaneABC/bysh
Shell to bypass cmd usage restrictions on Windows.
irohaneABC/chapter
irohaneABC/dingtalk-RCE
irohaneABC/exploitdb
The official Exploit Database repository
irohaneABC/Homework-of-C-Language
C/C++ code examples of my blog.
irohaneABC/python-data-structure-cn
problem-solving-with-algorithms-and-data-structure-using-python 中文版
irohaneABC/RunPE-In-Memory
Run a Exe File (PE Module) in memory (like an Application Loader)
irohaneABC/Forensia
Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
irohaneABC/Heat-RAT
🔭Program for remote control of Windows computers. Huge functionality. It has full and lite versions.
irohaneABC/LdrLockLiberator
For when DLLMain is the only way
irohaneABC/RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
irohaneABC/SerialPortShell
A simple program to interact with Serial Port in terminal,only for Windows
irohaneABC/v8-action
a simple method to get v8 source code with github action
irohaneABC/Windows-APT-Warfare
著作《Windows APT Warfare:惡意程式前線戰術指南》各章節技術實作之原始碼內容