y11en's Projects
Hangover runs a few simple Win64 applications on arm64 Linux and Android
A library for patching, replacing and decorating .NET and Mono methods during runtime
Hash map implementation in C.
A constexpr method to hash strings at compile time
An IDA Pro plugin to examine the glibc heap, focused on exploit development
Example shows how to parse and run linux program on windows
This is my first project ,so
Original C Implementation of the Hell's Gate VX Technique
RunPE using Hell's Gate technique.
自动化批量发送钓鱼邮件(横戈安全团队出品)
A cross platform C2/post-exploitation framework.
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
Extend the enterprise security test open source honeypot system , Record hacker attacks. 扩展企业安全测试主动诱导型开源蜜罐框架系统,记录黑客攻击手段
Windows driver with usermode interface which can hide objects of file-system and registry, protect processes and etc
之前那份是7600的,每次编译搞得好麻烦。更新一个VS2017可以直接编译的。
usermode standalone kernel interface
hihttps是一款完整源码的高性能web应用防火墙,既支持传统WAF的所有功能如SQL注入、XSS、恶意漏洞扫描、密码暴力破解、CC、DDOS等ModSecurity正则规则,又支持无监督机器学习,自主对抗未知攻击。
CVE主防(HIPS/HIDS)
一个简单的用于win7 x64的驱动级HIPS
An usermode alternative for DuplicateHandle.
POC and exploitation of vulnerabilities
EarlyBird process hollowing technique (BOF) - Spawns a process in a suspended state, inject shellcode, hijack main thread with APC, and execute shellcode
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
C Sharp codes of my blog.
Tool for reverse engineering macOS/OS X