Pinned Repositories
2021hw-exp
2021年hvv期间收集的漏洞POC;EXP;其他项目里有某些相关漏洞的利用脚本
2022-HW-POC
2022 护网行动 POC 整理
AheadLib
Fake DLL Source Code Generator
AniYa
免杀框架
BypassAvTool
源码免杀辅助工具
CS-AutoPostChain
基于 OPSEC 的 CobaltStrike 后渗透自动化链
OffsetBypassAv
ReverseShellLib
A simple Shell lib
ShellcodeLoader
该项目为Shellocde加载器,详细介绍了我们如何绕过防病毒软件,以及该工具如何使用
ShellGhost
A memory-based evasion technique which makes shellcode invisible from process start to end.
rixoye's Repositories
rixoye/CS-AutoPostChain
基于 OPSEC 的 CobaltStrike 后渗透自动化链
rixoye/ShellGhost
A memory-based evasion technique which makes shellcode invisible from process start to end.
rixoye/Beta
Beta versions of my software
rixoye/BetterChatGPT
An amazing UI for OpenAI's ChatGPT (Website + Windows + MacOS + Linux)
rixoye/ClipboardDump
Dump the contents of the clipboard of arbitrary format into separate files. WPF Application for Windows.
rixoye/command
红队常用命令速查
rixoye/confluence
The simplest docker file of Confluence. Support v8.9.1(latest) and v8.5.9(lts)
rixoye/EDRaser
EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offers two modes of operation: automated and manual.
rixoye/Emergency-Response-Notes
应急响应实战笔记,一个安全工程师的自我修养。
rixoye/Havoc
The Havoc Framework.
rixoye/javaweb-sec
rixoye/LdrLockLiberator
For when DLLMain is the only way
rixoye/LyInjector
一款功能强大的应用层反汇编代码注入器,实现了DLL注入,ShellCode注入等功能,是一款不错的后渗透利器。 A powerful application layer disassembly code injector that implements DLL injection, ShellCode injection, and other functions, is a good post penetration tool.
rixoye/Modules
Modules used by the Havoc Framework
rixoye/my_script_tools
平时工作上写的脚本工具或者二开修改的。
rixoye/pwnat
The New technique to create NAT
rixoye/qqwry
纯真IP数据库,每天自动抓取微信公众号推文发布的最新链接进行更新。
rixoye/Quasar
Remote Administration Tool for Windows
rixoye/RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
rixoye/RpcsDemo
rixoye/SetProcessInjection
rixoye/SharpTerminator
Terminate AV/EDR Processes using kernel driver
rixoye/suo5
一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool
rixoye/SysWhispers3
SysWhispers on Steroids - AV/EDR evasion via direct system calls.
rixoye/Talon
(Demo) 3rd party agent for Havoc
rixoye/vmprotect-3.5.1
rixoye/WID_LoadLibrary
Reverse engineering winapi function loadlibrary.
rixoye/win12
Windows 12 网页版,在线体验 点击下面的链接在线体验
rixoye/Windows-APT-Warfare
著作《Windows APT Warfare:惡意程式前線戰術指南》各章節技術實作之原始碼內容
rixoye/Windows-MS-LSAT-RPC-Example
Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD