0nopnop Goto Github PK
Type: User
Type: User
An enterprise friendly way of detecting and preventing secrets in code.
Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL
Dynamically invoke arbitrary unmanaged code from managed code without PInvoke.
A Frida script that disables Flutter's TLS verification
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
DIVA Android - Damn Insecure and vulnerable App for Android
The Leading Security Assessment Framework for Android.
Drupal remote code execution vulnerabilty
LSASS memory dumper using direct system calls and API unhooking.
Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation , it contains Anti-sandbox , if you run it under unperformant Virtual Machine you need to uncomment the code related to it and recompile.
Inject shellcode into process via "EarlyBird"
Execute Remote Assembly with args passing and with AMSI and ETW patching
Exploit and Check Script for CVE 2022-1388
Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique
These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok
GhostLoader - AppDomainManager - Injection - 攻壳机动队
SMB2/3 client library written in Go.
Dump ntds.dit really fast
Hackthebox weekly boxes writeups.
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
A container repository for my public web hacks!
A tool for automating cracking methodologies through Hashcat from the TrustedSec team.
Take a list of domains and probe for working HTTP and HTTPS servers
Declination of @matcornic Learn theme to Hugo
💀 iNotes...
An Intentionally designed Vulnerable Android Application built in Kotlin.
UUID shellcode Loader with dynamic indirect syscall implementation, syscall number/instruction get resolved dynamicaly at runtime, and the syscall number/instruction get unhooked using Halosgate technique. Function address get resolved from the PEB by offsets and comparaison by hashes
IOXIDResolver.py from AirBus Security
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.