y11en's Projects
A VM That is Dynamic and Fast
kernel-mode Anti-Anti-Debug plugin. based on intel vt-x && ept technology
Leaked Mirai Source Code for Research/IoC Development Purposes [a Bot Source]
miscellaneous scripts and programs
百宝箱
some learning notes about Web/Cloud/Docker Security、 Penetration Test、 Security Building
Generating YARA rules based on binary code
Library of generic and type safe containers in pure C language (C99 or C11) for a wide collection of container (comparable to the C++ STL).
Kernel DLL Injector using PTE Manipulation (NX) and VAD hide for hiding injected DLL
A library for loading dll module bypassing windows PE loader from memory (x86/x64)
📚 C++11/14/17 On the Fly
A more stealthy variant of "DLL hollowing"
文件监控日志收集
漏洞监控平台——Monitor。目前实现了监控GitHub、微软、CNNVD三者的漏洞信息,并使用企业微信实时推送。还可以使用邮箱推送,默认关闭。
MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash
Custom Created Hardware ID Spoofer to Bypass Hardware or IP Bans
梦弘浏览器 - 完全自主研发,打破国外垄断,比 Chrome 快 600%。
TLB splitting VMM
morphHTA - Morphing Cobalt Strike's evil.HTA
.NET 4.0 Scheduled Job Lateral Movement
MovieHunter:一键下载m3u8脚本
参考taviso的代码逆向一下mpengine.dll
YARA malware query accelerator (web frontend)
MS16-032(CVE-2016-0099) for SERVICE ONLY
MS17-010 Windows SMB RCE -- exploits, payloads, and scanners
An EternalBlue exploit implementation in pure go