hyperware1337
Follow
Malwarestuff
整合Pluto-Obfuscator和goron部分混淆,移植到LLVM-16.0.x,使用NewPassManager
A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.
Organized list of my malware development resources
Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.
Automated .NET AppDomain hijack payload generation
Obfusheader.h is a portable header file for C++14 compile-time obfuscation.
A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
Hide your P/Invoke signatures through other people's signed assemblies
Shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection
no-defender re-up all credit goes to https://github.com/es3n1n/no-defender
Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind
This repo contains C/C++ snippets that can be handy in specific offensive scenarios.
Offensive tooling notes and experiments in AutoIt v3 (https://www.autoitscript.com/site/autoit/)
Replace the .txt section of the current loaded modules from \KnownDlls\
Demonized Shell is an Advanced Tool for persistence in linux.
This is a repo of Malware Developement Workshop that I hosted with Nexus Security Club, it contains the modules and also the slides. If you are beginner in MalDev you can check the content to learn…
Pack/Encrypt/Obfuscate ELF + SHELL scripts