There are no reviews yet. Be the first to send feedback to the community and the maintainers!
DisableWin10PatchguardPoc
pseudo-code to show how to disable patchguard with win10POCS
May the POC be with youawesome_shell_loaders
shellcode-loaders and beacon-loadersawesome-obfuscations
awesome-C2
C2fearVM
A javascript virtual machine protectorCodeStudy
逆的或者收集的别人家的代码VoxDebugger
An analytical debugger programmed in C++, using Qt.WebbrowserLock
Locked home page for Internet Explorer.CVE-2022-26809
not an exploit or a pocgoldberg_emulator
awesome_code_windows_kernel
Researchs
一些研究awesome-bootkit
Bootkitsawesome_uefi_code
UEFI UEFI UEFICVE-2022-1040
may the poc with youawesome-useful-tools
red or blueavclassplusplus
AVCLASS++: Yet Another Massive Malware Labeling ToolKernelmode-driver
Simple IOCTL hooking driver for Kernel- User - Mode communication.PacketProgram
A tool which simulates an MMO game clientTitanLdr_for_memory
ShellTool
Shell Tool for BIOS DeveloperTHL-StealthDLLInjection
Anti-Exploit
This project has been moved from a private repository.Cisco_ASA_Backdoor
shellcodes
Shellcoding utilities (pure C) (Kernel : experimental_km branch) (Usermode: master)entypreter
The Entypreter Rootkit is a Windows post-exploitation rootkit similar to other penetration testing tools such as Meterpreter and Powershell Invader Framework. The major difference is that entypreter does most of its operations using Windows Script Host (a.k.a. JScript/VBScript), with compatibility in the core to support a default installation of Windows 2000 with no service packs (and potentially even versions of NT4) all the way through Windows 10.cyann
PoC Nanomite packer for PE32/PE32++ executablesHttpRouter
Simple & fast header-only HTTP router for C++17PY-MEMJECT
A Windows .DLL injector written in Pythonthg-framework
libKDNET
Connect Windbg to any hypervisor... WIPnbox
keow
Kernel Emulation on WindowsD3Bot
Бот для игры Diablo III. Исходный код говорит о том что такое забыть про рефакторинг.afl_domato
GDriver
Basic kernel mode/ring0 driver for 64bit Win7, 8, 8.1, 10. Signature scan for SDT, SSDT, SSDTS. Implements process hiding, process protection against read/write access and kills, the ability to forcefully terminate ANY process you want even it's a protected system process like an anti malware solution. The drivers gets its commands from a usermode process.EmailSender
匿名发送邮件给qq邮箱 winsock socket编程geswall
GeSWall, Intrusion Prevention Systemwebrequests
make http(s) requests in C++, no curl just opensslUserModeScheduler
Class framework for using kernel supported coroutines on WindowsCVE-2021-3972
just pocbanal
WIP: Buffer overflow ANALysisHyzMall
🎩 Trojan RAT of client sidevgce
Automatically exported from code.google.com/p/vgcedllinjection-spike-1
A spike that illustrates various DLL injection techniquesMAC_JELLY
Mac OS X GPU rootkit PoC by Team Jellyfishscanui
资产管理系统前台界面Beacon
Lightweight, header-only C++ IPC library for Windows operating systems (Vista+) using advanced local procedure callsmupack
Win32 EXE/DLL packerLoginDemo
LoginDemo about git test.TFTPServer-Peach-Fuzz-Example
TFTPServer 1.41 Peach FuzzTeaser-2019
TeamViewPoC
wndproc-autoclick
The world's most violent autoclickerzloader_c2_comms
A companion to the blog post for C2 commsstdx
自己的标准库拓展SymbolFuzz
一个基于Triton实现的符号执行fuzz工具libxyo-win
XYO Win LibraryMapleLibNative
A complete translation of the original MapleLiblibTools
woody_woodpacker-1
Projet dans la suite logique de nm/otools qui a pour principe de modifier les headers d'un fichier de type ELF64. Le but ici est de pouvoir ajouter un morceau de code et obfusquer une partie d'un fichier non strippé.EvtCarving-1
Carving the record of Windows Event Log from file(s)PProxy
Research-About-CS
kui-1
A lightweight direct ui framewokAutoNSE
Massive NSE (Nmap Scripting Engine) AutoSploit and AutoScannerNATBypass
一款lcx在golang下的实现deepstate
A unit test-like interface for fuzzing and symbolic executionOpenPacker
A public packer project that inserts simple anti-debugging functionality into an executable binary file.Utils
restinio
A header-only C++14 library that gives you an embedded HTTP/Websocket serverDynsec
Start of an anti-cheatmobilesafe
黑马实训Android项目神马卫士,实现功能包括:手机防盗、通讯卫士(黑名单管理)、软件管理、进程管理、手机杀毒、系统清理、高级工具(归属地查询、常用号码查询等)、以及 设置中心等,(Android2.2平台下)实现技术涉及Android四大组件、访问其他应用数据库、系统服务获取、Root权限获取、状态栏消息通知、多线程、异步任务获取数据等RVDbg
RVDbg is a debugger/exception handler for Windows 32-bit programs and has the capability to circumvent anti-debugging techniquespe_to_shellcode
Converts PE into a shellcodeInjectors-1
💻 DLL/Shellcode injection techniquesVT
external_c2_framework
Python api for usage with cobalt strike's External C2 specificationandroid-hook-1
struts2
struts2漏洞检测利用工具uefi-rootkit
httpsproxy
this is a proxy for http and https with the tunnel technologySigTool
kkvpn_client
KeyLogger
BKAV.Filter
onion-1
Onion is a utility and a static library for "attaching" binary files to Microsoft Windows EXE files as obfuscated resources.NTLMv2Hash
Taking NTLMv2 Hash from WiresharkTriggerBug
Fast-Symbolic-Emulation-Engine. CTFer tool. Save time on the highway. like Angr .disp
CVE-2018-14772
RCE exploit for CVE-2018-14772profiler
A profiler for Windows 7+ based on Event Tracing for Windows.DreamAssistant
Sugar
RKExposer
noneMUNINN
MUNINN is a Windows based C2 Server and spyware/keylogger implantLove Open Source and this site? Check out how you can help us