Use hardware breakpoints to spoof the call stack for both syscalls and API calls

Signtool for expired certificates

Example of using Sleep to create better named pipes.

My implementation of the GIUDA project in C++

This tiny project prevents the signtool from verifing cert time validity and let you sign your bin with outdated cert without changing system time manually

Windows x64 kernel mode rootkit process hollowing POC.

Experiment with d_olex's firmware and conducting "preboot" attack

Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.

CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking

HVNC for Cobalt Strike

old postex for grabbing a krbtgs for my current user

A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022

An unfinished DOUBLEPULSAR clone. Set to be redone at a later date

A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.

An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot

A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.

idk man this was the default github name

A bunch of scripts and code i wrote.

A proof of concept I developed to improve Gargoyle back in 2018 to achieve true memory obfuscation from position independent code

A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.

Improved version of EKKO by @5pider that Encrypts only Image Sections

Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process

Machinegun is an advanced version of Metasploit's railgun, capable of reliably running arbitrary Windows API functions on a remote computer and getting the results to the attacker's machine.

Living Off The Land Drivers

Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature

A light-weight first-stage C2 implant written in Nim.

BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released at BSides Cymru 2023.

A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk