20urc3 / Aplos
Aplos an extremely simple fuzzer for Windows binaries.
☆66Updated 5 months ago
Related projects: ⓘ
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆106Updated 2 weeks ago
- LPE exploit for CVE-2023-36802☆21Updated 11 months ago
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆61Updated last week
- A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls☆99Updated this week
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆92Updated 5 months ago
- OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"☆43Updated 3 months ago
- ☆62Updated 7 months ago
- ☆102Updated 2 months ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆91Updated last year
- Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation☆121Updated 5 months ago
- ☆27Updated 4 months ago
- A C++ PoC implementation for enumerating Windows Fibers directly from memory☆17Updated 4 months ago
- ☆24Updated last year
- BSides Prishtina 2024 Malware Development and Persistence workshop☆51Updated last month
- ☆70Updated 2 months ago
- ☆132Updated last month
- A more reliable way of resolving syscall numbers in Windows☆49Updated 7 months ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆105Updated 2 months ago
- Analysis of the vulnerability☆46Updated 7 months ago
- ☆56Updated last year
- A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022☆103Updated last year
- ☆58Updated 3 months ago
- Writeups for CTF challenges☆28Updated 10 months ago
- ☆68Updated 3 weeks ago
- rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.☆12Updated last year
- Small PoC of using a Microsoft signed executable as a lolbin.☆131Updated last year
- Find DLLs with RWX section☆74Updated last year
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆31Updated 2 months ago
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆84Updated last month
- Exploit targeting NT kernel in 24H2 Windows Insider Preview☆99Updated 4 months ago