A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

a drop-in replacement for Nmap powered by shodan.io

🛡️ Obfuscator, Encryption, Junkcode, Anti-Debug, PE protection/modification

A bot library for Discord, written in C++, and featuring explicit multithreading through the usage of custom, asynchronous C++ CoRoutines.

Write-ups and proof of concepts of design and implementaion of various modern malwares.

Linux anti-debugging and anti-analysis rust library

A list of rootkits I made for the sake of learning

Payload Loader With Evasion Features

Template-Driven AV/EDR Evasion Framework

Open-Source Shellcode & PE Packer

Dynamically invoke arbitrary unmanaged code from managed code without PInvoke.

Ixia ATI team open source or generally public material. Anything added here MUST be approved by Ixia Management.

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and th…

PCI-DSS compliant Debian 10/11/12 hardening

C/C++ code examples of my blog.

🚫💾 Run binaries straight from memory in Linux

Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,...)

A Nim implementation of reflective PE-Loading from memory

Run a Exe File (PE Module) in memory (like an Application Loader)

This repo covers some code execution and AV Evasion methods for Macros in Office documents

OrcaC2是一款基于Websocket加密通信的多功能C&C框架，使用Golang实现。

ScareCrow - Payload creation framework designed around EDR bypass.

WIP shellcode loader in nim with EDR evasion techniques

Sleep Obfuscation

Covenant is a collaborative .NET C2 framework for red teamers.