Pinned Repositories
literature_review
Survey of program analysis research with a focus on machine code
Cheatsheets
Penetration Testing/Security Cheatsheets
Go-Go-GadgetGospel
Quick Start/Setup of CI/CD for Offensive/Defensive Purposes
handbook
The CryptoParty Handbook
hyperdbg
Automatically exported from code.google.com/p/hyperdbg
Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
literature_review
Survey of program analysis research with a focus on machine code
MIS
SharpAttack
A simple wrapper for C# tools
rmusser01's Repositories
rmusser01/Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
rmusser01/AceLdr
Cobalt Strike UDRL for memory scanner evasion.
rmusser01/AMSI-ETW-Patch
Patch AMSI and ETW
rmusser01/GadgetToJScript
A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS based scripts.
rmusser01/Havoc
The Havoc Framework.
rmusser01/Jlaive
.NET Antivirus Evasion Tool (Exe2Bat)
rmusser01/PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual.
rmusser01/T-Mobster
Purpose-built Red Team network hardware implant made from common components.
rmusser01/WTSRM
WTSRM
rmusser01/YetAnotherWildcardCollection
Goal: Create a comprehensive wildcard collection not focused on NSFW
rmusser01/CSharp-Alt-Shellcode-Callbacks
A collection of (even more) alternative shellcode callback methods in CSharp
rmusser01/CVE-2023-23397-POC-Powershell
rmusser01/drivers_and_shit
rmusser01/KernelMode-Code
2022 Updated Kernelmode-Code
rmusser01/meme-rw
Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode
rmusser01/ntdlll-unhooking-collection
different ntdll unhooking techniques : unhooking ntdll from disk, from KnownDlls, from suspended process, from remote server (fileless)
rmusser01/NTDLLReflection
Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle to ntdll , and trigger exported APIs from the export table
rmusser01/PPL-Duck
rmusser01/pybof
Python module for running BOFs
rmusser01/RebirthGuard
Anti-cheat library for Windows C++
rmusser01/ReflectiveNtdll
A Dropper POC focusing EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (using pe2shc by @hasherezade). Payload encryption via SystemFucntion033 NtApi and No new thread via Fiber
rmusser01/requestbin
Python3 version of Runscope/requestbin
rmusser01/sample_dbs
Databases with sample data for testing
rmusser01/SharpLDAP
SharpLDAP is a tool writting in C# that aims to do enumeration via LDAP queries
rmusser01/Shellcode-Hide
This repo contains : simple shellcode Loader , Encoders (base64 - custom - UUID - IPv4 - MAC), Encryptors (AES), Fileless Loader (Winhttp, socket)
rmusser01/TitanLdr-1
Public variation of Titan Loader
rmusser01/titanldr-ng
A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.
rmusser01/TransitionalPeriod-1
Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits
rmusser01/TymSpecial
SysWhispers integrated shellcode loader w/ ETW patching, anti-sandboxing, & spoofed code signing certificates
rmusser01/youtube-dl-gui
A cross-platform GUI for youtube-dl made in Electron and node.js