Pinned Repositories
al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
Antivirus_R3_bypass_demo
分别用R3的0day与R0的0day来干掉杀毒软件
Arbitrium-RAT
Arbitrium is a cross-platform, fully undetectable remote access trojan, to control Android, Windows and Linux and doesn't require any firewall exceptions or port forwarding rules
AVIator
Antivirus evasion project
Awesome-Advanced-Windows-Exploitation-References
List of Awesome Advanced Windows Exploitation References
BypassAntiVirus
远控免杀系列文章及配套工具,搜集汇总了互联网上的几十种免杀工具和免杀方法,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
BypassAV
Cobalt Strike插件,用于快速生成免杀的可执行文件
CobaltStrikeReflectiveLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
MyProject
styxschip's Repositories
styxschip/Arbitrium-RAT
Arbitrium is a cross-platform, fully undetectable remote access trojan, to control Android, Windows and Linux and doesn't require any firewall exceptions or port forwarding rules
styxschip/AVIator
Antivirus evasion project
styxschip/Awesome-Advanced-Windows-Exploitation-References
List of Awesome Advanced Windows Exploitation References
styxschip/BypassAntiVirus
远控免杀系列文章及配套工具,搜集汇总了互联网上的几十种免杀工具和免杀方法,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
styxschip/CobaltStrikeReflectiveLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities.
styxschip/CobaltstrikeSource
Cobaltstrike4.1 Source
styxschip/CowInjecter
滥用cow机制进行全局注入
styxschip/donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
styxschip/DuckMemoryScan
检测绝大部分所谓的内存免杀马
styxschip/Dumpert
LSASS memory dumper using direct system calls and API unhooking.
styxschip/EvilClippy
A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.
styxschip/ezuri
A Simple Linux ELF Runtime Crypter
styxschip/Fiber_Injection
A simple tool to use windows Fibers to execute shellcode in a local process
styxschip/FuckAV
python写的一款免杀工具(shellcode加载器)BypassAV,国内杀软全过(windows denfend)2021-9-13
styxschip/GRAT2
We developed GRAT2 Command & Control (C2) project for learning purpose.
styxschip/hidden
Windows driver with usermode interface which can hide objects of file-system and registry, protect processes and etc
styxschip/JS-Sorting-Algorithm
一本关于排序算法的 GitBook 在线书籍 《十大经典排序算法》,使用 JavaScript & Python & Go & Java 实现。
styxschip/mimikatz
A little tool to play with Windows security
styxschip/r77-rootkit
Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
styxschip/RandomX
Proof of work algorithm based on random code execution
styxschip/remote_hacker_probe
Threat Emulation and Red Teaming Framework, The Hacking Software for normal people.
styxschip/ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
styxschip/secguide
面向开发人员梳理的代码安全指南
styxschip/ShellCodeFramework
绕3环的shellcode免杀框架
styxschip/styxschip.github.io
styxschip/SysWhispers
AV/EDR evasion via direct system calls.
styxschip/SysWhispers2
AV/EDR evasion via direct system calls.
styxschip/SysWhispers2_x86
X86 version of syswhispers2 / x86 direct system call
styxschip/UACME
Defeating Windows User Account Control
styxschip/Veil
Veil 3.1.X (Check version info in Veil at runtime)