Cr4sh / r0ak

Related projects ⓘ

Alternatives and complementary repositories for r0ak

• therealdreg / Win.Cerdalux
  WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs
  ☆16Updated last year
• bytecode77 / enter-product-key-privilege-escalation
  Enter Product Key Volatile Environment LPE
  ☆11Updated 2 years ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆35Updated 9 years ago
• Lima-X / XOrCryptEx
  XOrCryptEx lightweight C Utility/Algorithm
  ☆11Updated 2 years ago
• alal4465 / HeavensGateHook
  Hooking Heavens Gate in a weekend
  ☆13Updated 2 years ago
• tandasat / CVE-2022-25949
  A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.
  ☆36Updated 2 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆38Updated 4 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆39Updated 2 months ago
• bytecode77 / sysprep-privilege-escalation
  Sysprep Volatile Environment LPE (2017)
  ☆13Updated 2 years ago
• 0xMegaByte / COM-Explained
  ☆27Updated 2 years ago
• polakow / WindowsBypassSMEP
  Example for PagedOut!
  ☆24Updated 5 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆53Updated last year
• mgeeky / PEInfo
  Another Portable Executable files analysing stuff
  ☆18Updated 13 years ago
• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆37Updated 3 years ago
• Jasper1467 / WindowsDefender_Rebuild
  An attempt at reversing WindowsDefender
  ☆20Updated last month
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 4 years ago
• OrShazam / ChainEngine
  automates exploits using ROP chains, using ntdll-scraper
  ☆16Updated 2 years ago
• d35ha / PEReflectiveInjection
  Remote PE reflective injection with a simple reflective loader
  ☆29Updated 5 years ago
• NUL0x4C / RecycleBinPersistence
  using the Recycle Bin to insure persistence
  ☆11Updated 2 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆31Updated last year
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆30Updated last year
• realoriginal / bootdoor
  An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot
  ☆59Updated last year
• bytecode77 / taskmgr-privilege-escalation
  TaskMgr Volatile Environment LPE
  ☆12Updated 2 years ago