20urc3 / Aplos

Related projects: ⓘ

• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆106Updated 2 weeks ago
• xforcered / Windows_MSKSSRV_LPE_CVE-2023-36802
  LPE exploit for CVE-2023-36802
  ☆21Updated 11 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆61Updated last week
• realoriginal / grimreaper
  A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
  ☆99Updated this week
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆92Updated 5 months ago
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆43Updated 3 months ago
• alfarom256 / LogMeInPoCHandleDup
  ☆62Updated 7 months ago
• FuzzySecurity / BHUSA-2023
  ☆102Updated 2 months ago
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆91Updated last year
• Nassim-Asrir / CVE-2023-36424
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆121Updated 5 months ago
• Wh04m1001 / GamingServiceEoP5
  ☆27Updated 4 months ago
• JanielDary / weetabix
  A C++ PoC implementation for enumerating Windows Fibers directly from memory
  ☆17Updated 4 months ago
• omair2084 / msmq_re
  ☆24Updated last year
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆51Updated last month
• hugsy / recon_2024_windbg_workshop
  ☆70Updated 2 months ago
• gabriellandau / ItsNotASecurityBoundary
  ☆132Updated last month
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆49Updated 7 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆105Updated 2 months ago
• RomanRybachek / CVE-2024-20698
  Analysis of the vulnerability
  ☆46Updated 7 months ago
• ucsb-seclab / popkorn-artifact
  ☆56Updated last year
• realoriginal / angryorchard
  A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022
  ☆103Updated last year
• decoder-it / RelabelAbuse
  ☆58Updated 3 months ago
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆28Updated 10 months ago
• passthehashbrowns / VectoredExceptionHandling
  ☆68Updated 3 weeks ago
• tahadraidia / rp4windbg
  rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.
  ☆12Updated last year
• mrexodia / lolbin-poc
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆131Updated last year
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆74Updated last year
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆31Updated 2 months ago
• 0vercl0k / symbolizer-rs
  A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
  ☆84Updated last month
• exploits-forsale / 24h2-nt-exploit
  Exploit targeting NT kernel in 24H2 Windows Insider Preview
  ☆99Updated 4 months ago