Pinned Repositories
google_socks
A proof of concept demonstrating the use of Google Drive for command and control.
awesome-pcaptools
A collection of tools developed by other researchers in the Computer Science area to process network traces. All the right reserved for the original authors.
DBC2
DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any machine, powershell modules, and Dropbox servers as a means of communication.
the-backdoor-factory
Patch win32/64 PE and linux32/64 binaries with shellcode
Altman
the webshell tool
Ammyy-v3
Ammyy v3 Source Code leak , with ❤️ <3
APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
AWS_IR
Incident Response on AWS
backdoorcsharp
Simples Backdoor C#
backdoors
strfkr's Repositories
strfkr/truffleHog
Searches through git repositories for high entropy strings and secrets, digging deep into commit history
strfkr/myScripts
一个垃圾桶
strfkr/IIS_backdoor
backdoor
strfkr/XORShellcodeLoader
Loads shellcode from a resource file.
strfkr/PEBFake
PEBFake(修改PEB 伪装当前进程路径、参数等)
strfkr/CS_xor64
cobaltstrike xor64.bin补完计划
strfkr/hacker
strfkr/Blackbone
Windows memory hacking library
strfkr/isf
ISF(Industrial Control System Exploitation Framework),a exploitation framework based on Python
strfkr/ICS-Security-Tools
Tools, tips, tricks, and more for exploring ICS Security.
strfkr/TDL
Driver loader for bypassing Windows x64 Driver Signature Enforcement
strfkr/koadic
Koadic C3 COM Command & Control - JScript RAT
strfkr/LabTech-Powershell-Module
This is an attempt to create a comprehensive LT PoSH module.
strfkr/APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
strfkr/icsmaster
ICS/SCADA Security Resource(整合工控安全相关资源)
strfkr/TRISIS-TRITON-HATMAN
Repository containting original and decompiled files of TRISIS/TRITON/HATMAN malware
strfkr/explodingcan
An implementation of NSA's ExplodingCan exploit in Python
strfkr/up-1
strfkr/GoAgent-Always-Available
一直可用的GoAgent,会定时扫描可用的google gae ip,提供可自动化获取ip运行的版本
strfkr/sea
strfkr/w0lrd
strfkr/gw
strfkr/blowjob
strfkr/vt-disco-pipeline
VT "hunting" rules to fuel a discovery pipeline for new and unusual lure docs and malware
strfkr/Decept
Decept Network Protocol Proxy
strfkr/sysmonyo
My own damn sysmon configs
strfkr/up
strfkr/DetectionLab
Vagrant & Packer scripts to build a lab environment complete with security tooling and logging best practices
strfkr/localtunnel
expose yourself
strfkr/mutiny-fuzzer