John Tear

Elite
@plackyhacker

I am me... just an amateur malware developer. If you use my code, don't be naughty, keep it legal!!!

Shellcode-Encryptor. A simple shell code encryptor/decryptor/executor to bypass anti virus.

467

Shellcode-Injection-Techniques. A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this project up as I learn, discover or develop more techniques. Some techniques are better than others at bypassing AV.

465

Suspended-Thread-Injection. Another meterpreter injection technique using C# that attempts to bypass Defender

265

SandboxDefender. C# code to Sandbox Defender (and most probably other AV/EDRs).

166

Sys-Calls. An example of using Syscalls in C# to get a meterpreter shell.

115

Peruns-Fart. Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.

113

CmdLineSpoofer. How to spoof the command line when spawning a new process from C#.

112

Unhook-BitDefender. Unhooks Bit Defender from NTDLL and KERNELBASE using a classic technique.

58

ps-encoder. A very simple python script to encode and decode PowerShell one-liners.

25

AMSI-Bypass. Another AMSI bypass - but in C++.

22

PowerGhost. A custom run space to bypass AMSI and Constrained Language mode in PowerShell.

20

Malicious-KeePass-Plugin. A malicious KeePass plugin to exfiltrate the master key.

17

DynamicEarlyBird. An example of using Dynamic Invoke to Inject Shellcode using the Early Bird Method.

15

misc-scripts. Miscellaneous Scripts

8

LsassDump. Simple C# Program to dump LSASS

5

OffensiveVBA. This repo covers some code execution and AV Evasion methods for Macros in Office documents

5

Enumeration. Some .Net assemblies used to enumerate a host. Best when they are loaded in to memory.

5

plackyhacker.github.io. C++

5

HEVD. My exploits for the HackSys Vulnerable Driver Project

4

impersonator. C++ code to impersonate a Windows token and spawn a new process.

3

SecureCode1. Python exploit for the VulnHub OSWE practice box 'SecureCode1'

2

Bash-Port-Scanner. A simple bash TCP port scanner

2

passwordgenerator. Generate three random word password lists quickly

2

Sliver-Extension-Template. A Sliver Extension Template

2

SharpCall. Simple PoC demonstrating syscall execution in C#

2

msgbox. Host a non-malicious shellcode

2

Evilginx3-Phishlets. This repository provides penetration testers and red teams with an extensive collection of dynamic phishing templates designed specifically for use with Evilginx3.

1

Azure-Sentinel. Cloud-native SIEM for intelligent security analytics for your entire enterprise.

1

AnalyseDriver. A basic driver analysis tool for BinaryNinja, finds common information to speed up the process.

1

php-reverse-shell. PHP

1
30
Apply