Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Materials for Windows Malware Analysis training (volume 1)

A PoC for requesting HWIDs directly from hardware, skipping any potential hooks or OS support.

Early 2019 - late 2020. R.I.P. CVE-2020-12928 https://h0mbre.github.io/RyzenMaster_CVE/#

This repo contains samples that demonstrate the API used in Windows classic desktop applications.

VM一键加壳/脱壳，全压缩，反调试等

ByteDance-HIDS is a Cloud-Native Host-Based Intrusion Detection solution project to provide next-generation Threat Detection and Behavior Audition with modern architecture.

A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.

基于注册表劫持BypassUAC

Decompile of the Solorwinds "SUNBURST" Trojan associated with Campaign UNC2452 This is the SolarWinds.Orion.Core.BusinessLayer.dll file from the v2019.4.5220-Hotfix5.msp Patch

红队作战中比较常遇到的一些重点系统漏洞整理。

C# 读取本机对外RDP连接记录和其他主机对该主机的连接记录，从而在内网渗透中获取更多可通内网网段信息以及定位运维管理人员主机

shellcodeloader

Postgres Extension to Execute Shellcodes

Analyze Windows x64 Kernel Memory Layout

A kernel-mode rootkit with remote control

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Bypassing NTFS permissions to read any files as unprivileged user.

PoC of CVE-2020-16947 (Microsoft Outlook RCE vulnerablility)

swap the function pointer in NtCompareSigningLevels for undetected driver communication.

Windows 提权漏洞合集，附带编译环境，演示GIF图，漏洞详细信息，可执行文件

Source code for my books

Unity il2cpp reverse engineer

UEFI bootkit for driver manual mapping

Support ALL Windows Version