Pinned Repositories
2021-10-12-dll-hijacking-2
DLL hijacking with exported functions
365-Stealer
365-Stealer is a phishing simualtion tool written in python3. It can be used to execute Illicit Consent Grant Attack.
Admin2Sys
Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM
ongyuann.github.io
The best broccoli are miniature.
WinDefenderKiller
Windows Defender Killer | C++ Code Disabling Permanently Windows Defender using Registry Keys
ongyuann's Repositories
ongyuann/365Inspect
A PowerShell script that automates the security assessment of Microsoft Office 365 environments.
ongyuann/ai-exploits
A collection of real world AI/ML exploits for responsibly disclosed vulnerabilities
ongyuann/Arcane
Arcane - A secure remote desktop application for Windows with the particularity of having a server entirely written in PowerShell and a cross-platform client (Python/QT6).
ongyuann/ASPJinjaObfuscator
Heavily obfuscated ASP web shell generation tool.
ongyuann/business-ctf-2024
Official writeups for Business CTF 2024: The Vault Of Hope
ongyuann/ChromeKatz
Dump cookies directly from Chrome process memory
ongyuann/Damn-Vulnerable-RESTaurant-API-Game
Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.
ongyuann/dev-tunnels
Dev Tunnels SDK
ongyuann/DllDragon
A simple to use single-include Windows API resolver
ongyuann/DV_NEW
This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
ongyuann/edr-internals
Tools for analyzing EDR agents
ongyuann/getssl
obtain free SSL certificates from letsencrypt ACME server Suitable for automating the process on remote servers.
ongyuann/HEVD-Exploit-Win10-22H2-KVAS
HEVD Exploit - Bypassing KVA Shadow and SMEP on Windows 10 22H2
ongyuann/lldext
My commands and scripts extending WinDbg
ongyuann/LOLBASline
Baseline a Windows System against LOLBAS
ongyuann/m365-tools
ongyuann/Magicmida
Themida unpacker
ongyuann/mail-in-the-middle
ongyuann/muraena
Muraena is an almost-transparent reverse proxy aimed at automating phishing and post-phishing activities.
ongyuann/Office365-REST-Python-Client
Microsoft 365 & Microsoft Graph Library for Python
ongyuann/OSX-Injection
ongyuann/Process_Ghosting
Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by a file. This is an evasion technique.
ongyuann/python-o365
A simple python library to interact with Microsoft Graph and Office 365 API
ongyuann/red
red team tips and trix
ongyuann/Resources
ongyuann/searchbins
Offline command line tool that searches for GTFOBins binaries that can be used to bypass local security restrictions in misconfigured systems.
ongyuann/SharpView
C# implementation of harmj0y's PowerView
ongyuann/suricata
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
ongyuann/ThievingFox
ongyuann/WinDbg_Scripts
Useful scripts for WinDbg using the debugger data model