☆72Jan 31, 2025Updated last year
Alternatives and similar repositories for WindowsRootkitsGuide
Users that are interested in WindowsRootkitsGuide are comparing it to the libraries listed below
Sorting:
- ☆20Jan 14, 2026Updated last month
- ☆33Dec 10, 2024Updated last year
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.☆31Feb 7, 2025Updated last year
- ☆37Updated this week
- Stage 0☆169Dec 18, 2024Updated last year
- ☆157Apr 23, 2025Updated 10 months ago
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- poc for cve-2025-53772☆46Dec 10, 2025Updated 2 months ago
- Multi-layered malware detection system using static analysis, dynamic browser automation, and external APIs for accurate website threat i…☆14Jun 3, 2025Updated 9 months ago
- 扫描以及恢复 r3hook 类☆10Aug 29, 2021Updated 4 years ago
- A C# PE loader for x64 and x86 PE files.☆47Feb 24, 2026Updated last week
- This repo contains useful scripts that AI created for me which I would have been too lazy for☆92Feb 22, 2026Updated last week
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆46Aug 13, 2025Updated 6 months ago
- Remote Thread Detection with a Kernel Driver☆34Jan 14, 2025Updated last year
- This repository contains the public work I produced, wheter it is research, post, slides, sometimes videos, and materials of my talks.☆52Aug 3, 2025Updated 7 months ago
- The different ways to dump lsass☆266Aug 15, 2025Updated 6 months ago
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…☆436May 22, 2025Updated 9 months ago
- Erebus is a payload generator written in Nim.☆16Jun 13, 2023Updated 2 years ago
- Helps defenders find their WSUS configurations in the wake of CVE-2025-59287☆46Oct 28, 2025Updated 4 months ago
- Dreg's setup for lldb reversing. The simplest and easiest possible, without scripting. lldb debugging setup.☆14May 2, 2024Updated last year
- Web File Manager☆11Aug 21, 2025Updated 6 months ago
- Galago extracts encryption keys from ARM64 Android native libraries through controlled emulation.☆23Jan 23, 2026Updated last month
- Rex Shellcode Loader for AV/EDR evasion☆35Apr 7, 2024Updated last year
- A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.☆67Feb 11, 2025Updated last year
- Find potential DLL Sideloads on your windows computer☆219Jan 12, 2025Updated last year
- UAC Bypass using CMSTP in Rust☆35Dec 6, 2024Updated last year
- A cross-platform tool to find traces of old SIDs remaining in LDAP objects of the Active Directory☆25Jun 29, 2025Updated 8 months ago
- PowerShell tool for auditing Microsoft Entra ID Conditional Access policies and MFA compliance☆31Aug 2, 2025Updated 7 months ago
- sounds ud idk☆18Jun 29, 2024Updated last year
- Native API header files for the Process Hacker project.☆15Mar 1, 2023Updated 3 years ago
- Ghidra plugin for HashDB☆21Oct 11, 2023Updated 2 years ago
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆31Dec 31, 2025Updated 2 months ago
- Shellcode encryptor using a substitution cipher with a randomly generated key.☆142Jan 18, 2025Updated last year
- Rust template/library for implementing your own COFF loader☆72Jan 27, 2025Updated last year
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆36Nov 24, 2024Updated last year
- 🤖 The Modern, Blazing Fast Port Scanner 🤖☆28Dec 29, 2024Updated last year
- Location of some Active Directory lab scripts I have created and find useful☆113Feb 2, 2026Updated last month
- Using Windows' own bootloader as a shim to bypass Secure Boot☆226Jul 17, 2024Updated last year
- Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨☆70Updated this week