Pinned Repositories
Dll2Shellcode
Convert native dll to shellcode, and support exported function
exec
Use current thread token to execute command
FindDebug
Find and clean the PDB information
kinject
Kernel shellcode injector
kt
Kernel file/process/object tool
minidump
Custom implementation of DbgHelp's MiniDumpWriteDump function. Uses static syscalls to replace low-level functions like NtReadVirtualMemory.
NanoCore
NanoCore rat stub source code
nanodump
A flexible tool that creates a minidump of the LSASS process
smb2os
Use smb2 protocol to detect remote computer os version, support win7/server2008-win10/server2019
Unlocker
Unlock files and folders
w1u0u1's Repositories
w1u0u1/kinject
Kernel shellcode injector
w1u0u1/minidump
Custom implementation of DbgHelp's MiniDumpWriteDump function. Uses static syscalls to replace low-level functions like NtReadVirtualMemory.
w1u0u1/kt
Kernel file/process/object tool
w1u0u1/smb2os
Use smb2 protocol to detect remote computer os version, support win7/server2008-win10/server2019
w1u0u1/NanoCore
NanoCore rat stub source code
w1u0u1/Dll2Shellcode
Convert native dll to shellcode, and support exported function
w1u0u1/exec
Use current thread token to execute command
w1u0u1/Unlocker
Unlock files and folders
w1u0u1/nanodump
A flexible tool that creates a minidump of the LSASS process
w1u0u1/FindDebug
Find and clean the PDB information
w1u0u1/ZoomEye
GUI tool
w1u0u1/cred
Windows Credentials Import & Export
w1u0u1/KDU
Kernel Driver Utility
w1u0u1/ApkTool
A tool for reverse engineering Android apk files
w1u0u1/NanoCore.FileBrowser
NanoCore rat FileBrowser plugin
w1u0u1/tcpkiller
Close tcp connection like TCPView
w1u0u1/7z
7z full console version
w1u0u1/GoogleAuth
The application requests an access token from the Google Authorization Server, extracts a token from the response.
w1u0u1/MicrosoftAuth
The application requests an access token from the Microsoft Authorization Server, extracts a token from the response.
w1u0u1/mssql
mssql client
w1u0u1/FileHash
Calculate CRC32/MD5/SHA1/SHA256 hashes of your files
w1u0u1/mysql
mysql client
w1u0u1/NanoCore.PowershellRunner
NanoCore rat PowershellRunner plugin