There are no reviews yet. Be the first to send feedback to the community and the maintainers!
DisableWin10PatchguardPoc
pseudo-code to show how to disable patchguard with win10POCS
May the POC be with youawesome_shell_loaders
shellcode-loaders and beacon-loadersawesome-obfuscations
awesome-C2
C2fearVM
A javascript virtual machine protectorCodeStudy
逆的或者收集的别人家的代码VoxDebugger
An analytical debugger programmed in C++, using Qt.WebbrowserLock
Locked home page for Internet Explorer.CVE-2022-26809
not an exploit or a pocgoldberg_emulator
awesome_code_windows_kernel
Researchs
一些研究awesome-bootkit
Bootkitsawesome_uefi_code
UEFI UEFI UEFICVE-2022-1040
may the poc with youawesome-useful-tools
red or blueavclassplusplus
AVCLASS++: Yet Another Massive Malware Labeling ToolKernelmode-driver
Simple IOCTL hooking driver for Kernel- User - Mode communication.PacketProgram
A tool which simulates an MMO game clientTitanLdr_for_memory
ShellTool
Shell Tool for BIOS DeveloperAnti-Exploit
This project has been moved from a private repository.Cisco_ASA_Backdoor
shellcodes
Shellcoding utilities (pure C) (Kernel : experimental_km branch) (Usermode: master)entypreter
The Entypreter Rootkit is a Windows post-exploitation rootkit similar to other penetration testing tools such as Meterpreter and Powershell Invader Framework. The major difference is that entypreter does most of its operations using Windows Script Host (a.k.a. JScript/VBScript), with compatibility in the core to support a default installation of Windows 2000 with no service packs (and potentially even versions of NT4) all the way through Windows 10.cyann
PoC Nanomite packer for PE32/PE32++ executablesHttpRouter
Simple & fast header-only HTTP router for C++17PY-MEMJECT
A Windows .DLL injector written in Pythonthg-framework
libKDNET
Connect Windbg to any hypervisor... WIPnbox
keow
Kernel Emulation on WindowsD3Bot
Бот для игры Diablo III. Исходный код говорит о том что такое забыть про рефакторинг.afl_domato
GDriver
Basic kernel mode/ring0 driver for 64bit Win7, 8, 8.1, 10. Signature scan for SDT, SSDT, SSDTS. Implements process hiding, process protection against read/write access and kills, the ability to forcefully terminate ANY process you want even it's a protected system process like an anti malware solution. The drivers gets its commands from a usermode process.EmailSender
匿名发送邮件给qq邮箱 winsock socket编程geswall
GeSWall, Intrusion Prevention Systemwebrequests
make http(s) requests in C++, no curl just opensslUserModeScheduler
Class framework for using kernel supported coroutines on WindowsCVE-2021-3972
just pocbanal
WIP: Buffer overflow ANALysisvgce
Automatically exported from code.google.com/p/vgcedllinjection-spike-1
A spike that illustrates various DLL injection techniquesMAC_JELLY
Mac OS X GPU rootkit PoC by Team JellyfishHackerTools
使用MFC编写的病毒技术合集scanui
资产管理系统前台界面Beacon
Lightweight, header-only C++ IPC library for Windows operating systems (Vista+) using advanced local procedure callsAndroidMethodHook-1
android art hook兼容dalvik和art 7.1mupack
Win32 EXE/DLL packerLoginDemo
LoginDemo about git test.TFTPServer-Peach-Fuzz-Example
TFTPServer 1.41 Peach FuzzDriverInjectDll
Use Driver Global Memory Load DLLTeamViewPoC
wndproc-autoclick
The world's most violent autoclickerzloader_c2_comms
A companion to the blog post for C2 commscjass
Automatically exported from code.google.com/p/cjassstdx
自己的标准库拓展SymbolFuzz
一个基于Triton实现的符号执行fuzz工具libxyo-win
XYO Win LibraryMapleLibNative
A complete translation of the original MapleLiblibTools
woody_woodpacker-1
Projet dans la suite logique de nm/otools qui a pour principe de modifier les headers d'un fichier de type ELF64. Le but ici est de pouvoir ajouter un morceau de code et obfusquer une partie d'un fichier non strippé.EvtCarving-1
Carving the record of Windows Event Log from file(s)DownloadPDB
PProxy
Research-About-CS
kui-1
A lightweight direct ui framewokSymDiff
Diff tool for comparing symbols in PDB filesOpenPacker
A public packer project that inserts simple anti-debugging functionality into an executable binary file.Utils
Dynsec
Start of an anti-cheatandroid-hook-1
fmt
A modern formatting libraryNDIS6.30-NetMonitor
NDIS6.30 Filter LibraryAdvancedScript
Add More Features for x64dbg Script System,with some Functions which will help Plugin Coder2023Hvv
2023 HVV情报速递~struts2
struts2漏洞检测利用工具uefi-rootkit
httpsproxy
this is a proxy for http and https with the tunnel technologySigTool
kkvpn_client
KeyLogger
BKAV.Filter
kernel-mii
Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.penglab
Abuse of Google Colab for fun and profit. 🐧onion-1
Onion is a utility and a static library for "attaching" binary files to Microsoft Windows EXE files as obfuscated resources.NTLMv2Hash
Taking NTLMv2 Hash from Wiresharkdumb-obfuscator
Tutorial on how to write the dumbest obfuscator I could think of.TriggerBug
Fast-Symbolic-Emulation-Engine. CTFer tool. Save time on the highway. like Angr .disp
CVE-2018-14772
RCE exploit for CVE-2018-14772profiler
A profiler for Windows 7+ based on Event Tracing for Windows.DreamAssistant
IDA-Android-Kernel-Symbolizer
An IDA plugin that allows you to use /proc/kallsyms output to import function and data labels into an extracted Android kernel image.Sugar
RKExposer
noneMUNINN
MUNINN is a Windows based C2 Server and spyware/keylogger implantmutiny-fuzzer
Love Open Source and this site? Check out how you can help us