免杀框架

Process Injection

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

一个开源的网址导航网站项目，后台基于Guns和Springboot

家庭内网Web资产导航页

A builder 🔨 for binding evil program 😈 and normal document 🐣

助力每一位RT队员，快速生成免杀木马

一款使用rust开发的高性能正反向隧道代理工具，基于多路复用技术。

Chrome-extension implant that turns victim Chrome browsers into fully-functional HTTP proxies, allowing you to browse sites as your victims.

Backport of SliverStager to work with DotNetToJScript for vba

🧙‍♂️ Node.js Command & Control for Script-Jacking Vulnerable Electron Applications

Privilege Escalation using Passwd - April Fools prank

免杀与恶意软件开发

ddpoc的谷歌浏览器插件

macOS persistence tool

一键提取exe的图标、嵌入图标、资源信息、版本信息、修改时间、数字签名，降低程序熵值

A cloudflare verification bypass script for webscraping

sliver-webhook 实现上线通知

Java 内存马开聚会 🎉

JXA script to allow programmatic persistence via macOS Calendar.app alerts.

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

cs loader，bypassav， 分离免杀某60，某绒

A PoC to deploy a Sliver Agent with amsi bypass, process injection, hollowing and OpSec

Identifies the bytes that Microsoft Defender flags on.

通过文件加载和远程URL加载方式实现Shellcode分离加载

IoM implant, C2 Framework and Infrastructure

Python binding for curl-impersonate fork via cffi. A http client that can impersonate browser tls/ja3/http2 fingerprints.

Python based web automation tool. Powerful and elegant.

Proxy server to bypass Cloudflare protection