Pentest-and-Development-Tips
A collection of pentest and development tipsHomework-of-C-Language
C/C++ code examples of my blog.Worse-PDF
Turn a normal PDF file into malicious.Use to steal Net-NTLM Hashes from windows machines.Homework-of-Python
Python codes of my blog.List-RDP-Connections-History
Use powershell to list the RDP Connections History of logged-in users or all usersEventlogedit-evtx--Evolution
Remove individual lines from Windows XML Event Log (EVTX) filesJavascript-Backdoor
Learn from Casey Smith @subTeeInvoke-BuildAnonymousSMBServer
Use to build an anonymous SMB file server.msbuild-inline-task
CLR-Injection
Use CLR to inject all the .NET appsHomework-of-C-Sharp
C Sharp codes of my blog.pyKerbrute
Use python to perform Kerberos pre-auth bruteforcingInject-dll-by-APC
Asynchronous Procedure CallsSharpRDPCheck
Use to check the valid account of the Remote Desktop Protocol(Support plaintext and ntlmhash)Inject-dll-by-Process-Doppelganging
Process DoppelgΓ€ngingbackup-3gstudent.github.io
old blogSmbtouch-Scanner
Automatically scan the inner network to detect whether they are vulnerable.ntfsDump
Use to copy a file from an NTFS partitioned volume by reading the raw volume and parsing the NTFS structures.Homework-of-Powershell
powershell codes of my blog.Use-COM-objects-to-bypass-UAC
Office-Persistence
Use powershell to test Office-based persistence methodsWindows-User-Clone
Create a hidden accountWindows-EventLog-Bypass
Use subProcessTag Value From TEB to identify Event Log ThreadsAPT34-Jason
Use to perform Microsoft exchange account brute-force.pyXSSPlatform
Used to build an XSS platform on the command line.CVE-2017-8464-EXP
Support x86 and x64bitsadminexec
Use bitsadmin to maintain persistence and bypass AutorunsCode-Execution-and-Process-Injection
Powershell to CodeExecution and ProcessInjectionShellcode-Generater
No inline asm,support x86/x64test
just testCreateRemoteThread
From 32-bit process to 64-bit processPasswordFilter
2 ways of Password Filter DLL to record the plaintext passwordDump-Clear-Password-after-KB2871997-installed
From-System-authority-to-Medium-authority
Penetration testWaitfor-Persistence
Use Waitfor.exe to maintain persistenceBypass-Windows-AppLocker
NinjaCopy
Powershell to copy ntds.ditCOM-Object-hijacking
use COM Object hijacking to maintain persistence.(Hijack CAccPropServicesClass and MMDeviceEnumerator)3gstudent.github.io
BlogWinpcap_Install
Auto install WinPcap on Windows(command line)ewsManage
My exercise of using Exchange Web Service(EWS)HiddenNtRegistry
Use NT Native Registry API to create a registry that normal user can not query.Homework-of-Go
Go code examples of my blog.signtools
From Windows SDKEventlogedit-evt--General
Remove individual lines from Windows Event Viewer Log (EVT) filesPNG-Steganography
Steganography PayloadeasBrowseSharefile
Use to browse the share file by eas(Exchange Server ActiveSync)Bypass-McAfee-Application-Control--Code-Execution
source&exeSmallp0wnedShell
Small modification version of p0wnedShellListInstalledPrograms
List the programs that the current Windows system has installedAutoIt-Keylogger
Hide-Process-by-kd.exe
powershell to hide process by kd.exeNodeJS-Downloader
An example of a downloader written in NodeJS.Use-msxsl-to-bypass-AppLocker
Learn from Casey Smith@subTeeGetExpiredDomains
Search for available domain from expireddomains.netExcelDllLoader
Execute DLL via the Excel.Application object's RegisterXLL() methodAdd-Dll-Exports
Use to generate DLL through Visual StudioExecute-CSharp-From-XSLT-TEST
Writeup
interesting analysisPNG_stego-test
LSB-testSendMail-with-Attachments
Use powershell to send mailCatch-specified-file-s-handle
Enumerate all processes and get specified file's handle,then close it.IE-BHO-POSTdata-Logger
A sample IE BHO for logging Internet Explorer's POST data.WanaCrypt0r-Reverse-Analysis
Record my reverse analysis of WanaCrypt0rbgi-creater
Use BGInfo to bypass Application WhitelistingGet-Wlan-Keys
Powershell to get wlan keysHomework-of-Java
Java codes of my blog3gstudent
regsvr32-test
Test-Exploit-for-Joomla-3.4.4-3.6.4
Test if the website allows user registrationBlogPic
For blog postLove Open Source and this site? Check out how you can help us