James Yeung

icon indicating a website link linkedin.com/in/james-yeung-5aa19911a/

icon location Hong Kong icon location coding idiot..

Results 5 repositories owned by James Yeung

SysmonQuiet

85
Stars
16
Forks
Watchers

RDLL for Cobalt Strike beacon to silence sysmon process

verified publisher icon ScriptIdiot

BeaconNotifier-Discord

31
Stars
4
Forks
Watchers

Cobalt strike CNA script to notify you via Discord whenever there is a new beacon.

verified publisher icon ScriptIdiot

BOF-patchit

115
Stars
18
Forks
Watchers

An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are available.

verified publisher icon ScriptIdiot

sleepmask_PatchlessHook

77
Stars
8
Forks
Watchers

Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW

verified publisher icon ScriptIdiot

sleepmask_ekko_cfg

41
Stars
9
Forks
Watchers

Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process

verified publisher icon ScriptIdiot