Cr4sh / r0ak
r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
☆10Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for r0ak
- WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs☆16Updated last year
- Enter Product Key Volatile Environment LPE☆11Updated 2 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 9 years ago
- XOrCryptEx lightweight C Utility/Algorithm☆11Updated 2 years ago
- Hooking Heavens Gate in a weekend☆13Updated 2 years ago
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.☆36Updated 2 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- NT AUTHORITY\SYSTEM☆38Updated 4 years ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆39Updated 2 months ago
- Sysprep Volatile Environment LPE (2017)☆13Updated 2 years ago
- ☆27Updated 2 years ago
- Example for PagedOut!☆24Updated 5 years ago
- A small library helping to parse commandline parameters (for C/C++)☆53Updated last year
- Another Portable Executable files analysing stuff☆18Updated 13 years ago
- A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.☆37Updated 3 years ago
- An attempt at reversing WindowsDefender☆20Updated last month
- ☆31Updated 4 years ago
- ☆22Updated 4 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16Updated 2 years ago
- Remote PE reflective injection with a simple reflective loader☆29Updated 5 years ago
- using the Recycle Bin to insure persistence☆11Updated 2 years ago
- A set of small utilities, helpers for PIN tracers☆31Updated last year
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆59Updated last year
- TaskMgr Volatile Environment LPE☆12Updated 2 years ago