bypass 360,huorong,tencent,defender with Split loading technique and unhooking

This project steals important data from all chromium and gecko browsers installed in the system and gather the data in a stealer db to be exfiltrated out. A powerful Browser Stealer

Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀

红队技术笔记

AzureAD beacon object files

Tool to bypass LSA Protection (aka Protected Process Light)

Port of Cobalt Strike's Process Inject Kit

PWN类 Docker环境 基础镜像

Converts PE into a shellcode

Efficient RAT signature locator for bypassing AV/EDR, supporting static scanning and memory scanning.

xxl-job未授权命令执行

Azure Data Exporter for BloodHound

轻量级的无害化钓鱼~

Collection of various malicious functionality to aid in malware development

A complete terminal user interface (TUI) for LDAP.

AV/EDR Lab environment setup references to help in Malware development

Extracting Clear Text Passwords from mstsc.exe using API Hooking.

使深信服（Sangfor）开发的非自由的 VPN 软件 EasyConnect 和 aTrust 运行在 docker 或 podman 中，并作为网关和/或提供 socks5、http 代理服务

一款基于PE Patch技术的后渗透免杀工具，支持32位和64位

Evasive shellcode loader

ELF Beacon Object File (BOF) Template

一个各种方式突破Disable_functions达到命令执行的shell

攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。

DLL Hijack Search Order Enumeration BOF

重构Beacon

KMS 激活服务，slmgr 命令激活 Windows 系统、Office

Process injection alternative

Sysmon-Like research tool for ETW