Windows GPU rootkit PoC by Team Jellyfish

Real fucking shellcode encryptor & obfuscator tool

简单致盲火绒Sysdiag杀毒软件

一款后渗透免杀工具，助力每一位像我这样的脚本小子快速实现免杀，支持bypass AV/EDR 360 火绒 Windows Defender Shellcode Loader

软件工程常用文档模板及示例：可行性分析报告、开发计划、需求分析文档、概要设计文档、详细设计文档、用户操作手册、测试计划、测试分析报告、开发进度报告、项目开发总结报告、软件维护手册等

The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Collection of various malicious functionality to aid in malware development

🐜🐜🐜 ants is the most powerful and reliable pooling solution for Go.

Go实现的Trojan代理，支持多路复用/路由功能/CDN中转/Shadowsocks混淆插件，多平台，无依赖。A Trojan proxy written in Go. An unidentifiable mechanism that helps you bypass GFW. https://p4gefau1t.github.io/trojan-go/

GO Simple Tunnel - a simple tunnel written in golang

FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more.

CredSniper is a phishing framework written with the Python micro-framework Flask and Jinja2 templating which supports capturing 2FA tokens.

Let's Encrypt/ACME client and library written in Go

A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementing page protection changes during no execution.

PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.

Metasploit Framework

shellcode

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port thi…

汇编语言编写Shellcode加载器源代码 https://payloads.online/archivers/2022-02-16/1/

Embed an executable as a PE resource, drops and launches it in runtime.

Hyperion is an open source ambient light software. Feel free to join us and contribute new features! Webpage: https://hyperion-project.org/

AV/EDR evasion via direct system calls.

This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".

Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide

FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!

KaynLdr is a Reflective Loader written in C/ASM

Direct system calls by nim

Various tools, PoCs and experiments related to my blog at https://www.forrest-orr.net/

A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use in testing detection techniques or other security research.

一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.