Pinned Repositories
EvilWMIProvider
Installs And Executes Shellcode
LogAnalytics
Exploring stuff here
WindowsInternals
Windows Internals Study Notes.
sunnyc7's Repositories
sunnyc7/Windows-Insight
The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Microsoft Windows operating system. This repository stores relevant documentation as well as executable files needed for conducting analysis studies.
sunnyc7/AdvancedHunting
Advanced Hunting Queries for Microsoft Security Products
sunnyc7/Antivirus-Artifacts
Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
sunnyc7/atomiccaldera
A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files.
sunnyc7/christmas-obfuscated-C
Obuscated C Christmas programs
sunnyc7/DoubleStar
A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques
sunnyc7/exploit
sunnyc7/FalconFriday
Bi-weekly hunting queries
sunnyc7/Ganxo
An opensource API hooking framework
sunnyc7/Jkornev_NTlib
Static library and headers for linking your software with ntdll.dll
sunnyc7/kusto-queries
example queries for learning the kusto language
sunnyc7/learning-reverse-engineering
This repository contains sample programs written primarily in C and C++ for learning native code reverse engineering.
sunnyc7/LogAnalyticsExamples
Query examples using the Azure Log Analytics query language
sunnyc7/messageanalyzer-archive
Microsoft Message Analyzer EOL Archive
sunnyc7/papers-we-love
Papers from the computer science community to read and discuss.
sunnyc7/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
sunnyc7/PESecurity
PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.
sunnyc7/PrivescCheck
Privilege Escalation Enumeration Script for Windows
sunnyc7/project-based-tutorials-in-c
A curated list of project-based tutorials in C
sunnyc7/RedTeamCCode
Red Team C code repo
sunnyc7/reinforcement-learning
Implementation of Reinforcement Learning Algorithms. Python, OpenAI Gym, Tensorflow. Exercises and Solutions to accompany Sutton's Book and David Silver's course.
sunnyc7/SysWhispers2
AV/EDR evasion via direct system calls.
sunnyc7/WDACTools
A PowerShell module to facilitate building, configuring, deploying, and auditing Windows Defender Application Control (WDAC) policies
sunnyc7/WDEG
Research on WDEG (Windows Defender Exploit Guard) and its components.
sunnyc7/winchecksec
Checksec, but for Windows: static detection of security mitigations in executables
sunnyc7/windows_kernel_resources
Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits
sunnyc7/WindowsDefenderATP-Hunting-Queries
Sample queries for Advanced hunting in Microsoft Defender ATP
sunnyc7/WinTools
A collection of free miscellaneous Windows tools
sunnyc7/xknow_infosec
Random Stuff for Cyber Security Incident Response
sunnyc7/Z0FCourse_ReverseEngineering
Reverse engineering course by Z0F. Focuses on x64 Windows.