This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)

内网渗透中的一些工具及项目资料

A Beacon Object File (BOF) is a compiled C program, written to a convention that allows it to execute within a Beacon process and use internal Beacon APIs. BOFs are a way to rapidly extend the Beac…

IntelliJ IDEA Community Edition & IntelliJ Platform

C++ websocket client/server library

Guide for USBNinja

EDK II

Disable PatchGuard and Driver Signature Enforcement at boot time

Turn off PatchGuard in real time for win7 (7600) ~ later

《Windows 内核安全编程技术实践》 系列丛书，探索 Anti RootKit 反内核工具核心原理与技术实现细节。

Hiding kernel-driver for x86/x64.

source code for the examples and topics from the book

Driver hooks a function from NT windows. read/write memory and use windows GDI to draw on buffer from kernel.

javascript function hook

Tool for reverse engineering of Angular applications

Universal PatchGuard and Driver Signature Enforcement Disable

win10，win11，windows应用隐藏，进程隐藏，外挂隐藏，躲避检测，免注入，无需dll。适用于游戏黑客，机密保护

Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.

Post-exploitation tool for hiding processes from monitoring applications

🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc

WinDivert: Windows Packet Divert

SuperDllHijack：A general DLL hijack technology, don't need to manually export the same function interface of the DLL, so easy! 一种通用Dll劫持技术，不再需要手工导出Dll的函数接口了

自动化dll劫持测试工具。Automated dll hijacking testing tool

List of Awesome CobaltStrike Resources

基于 OPSEC 的 CobaltStrike 后渗透自动化链

Portable Executable parsing library (from PE-bear)

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

Reproducible curl binaries for Linux, macOS and Windows