Zerokit/GAPZ rootkit (non buildable and only for researching)
☆184Mar 30, 2019Updated 7 years ago
Alternatives and similar repositories for zerokit
Users that are interested in zerokit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Zerokit shared code☆18Mar 28, 2019Updated 7 years ago
- User-mode part of Zerokit platform☆23Mar 30, 2019Updated 7 years ago
- Analysis and Modification Tool for Executables☆18Mar 28, 2019Updated 7 years ago
- Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.☆92Feb 24, 2019Updated 7 years ago
- A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext☆53Apr 29, 2018Updated 8 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- exploit termdd.sys(support kb4499175)☆61Jul 15, 2019Updated 6 years ago
- A novel technique to hide code from debuggers & disassemblers☆161Aug 9, 2024Updated last year
- ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.☆93May 23, 2019Updated 6 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆33Aug 7, 2019Updated 6 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆35Aug 3, 2018Updated 7 years ago
- idenLib - Library Function Identification [This project is not maintained anymore]☆394Mar 17, 2019Updated 7 years ago
- Process reimaging proof of concept code☆96Jun 21, 2019Updated 6 years ago
- Protects deletion of files with a specified extension using a kernel-mode driver.☆76Jul 16, 2018Updated 7 years ago
- ☆47Jun 14, 2018Updated 7 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Virtual Machine Introspection, Tracing & Debugging☆599Feb 22, 2022Updated 4 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Jul 8, 2022Updated 3 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆742Mar 17, 2019Updated 7 years ago
- Hyper-V Research is trendy now☆200May 6, 2024Updated 2 years ago
- Execute an arbitrary command within the context of another process☆20Jun 28, 2019Updated 6 years ago
- ☆164May 18, 2018Updated 8 years ago
- Local privilege escalation PoC exploit for CVE-2019-16098☆202Sep 13, 2019Updated 6 years ago
- Reverse engineered source code of the autochk rootkit☆212Nov 1, 2019Updated 6 years ago
- Tool for injecting a "TCP Relay" managed assembly into unmanaged processes☆118May 23, 2019Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Diff tool for comparing symbols in PDB files☆84Mar 4, 2020Updated 6 years ago
- Simple 32/64-bit PEs loader.☆140Dec 19, 2018Updated 7 years ago
- Windows Drivers☆100Apr 6, 2019Updated 7 years ago
- AppXSvc Arbitrary File Security Descriptor Overwrite EoP☆20Sep 15, 2019Updated 6 years ago
- Kernel mode windows NT API logger☆22Sep 9, 2019Updated 6 years ago
- POC viruses I have created to demo some ideas☆60Apr 12, 2020Updated 6 years ago
- My repository to upload drivers from different books and all the information related to windows internals.☆164Aug 16, 2019Updated 6 years ago
- Stealthy backdoor for Windows operating systems☆284Feb 13, 2020Updated 6 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆128Dec 3, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A more stealthy variant of "DLL hollowing"☆365Mar 8, 2024Updated 2 years ago
- The Windows Library for Intel Process Trace (WinIPT) is a project that leverages the new Intel Processor Trace functionality exposed by W…☆409Apr 27, 2023Updated 3 years ago
- A fully automatic CVE-2019-0841 bypass targeting all versions of Edge in Windows 10.☆58Jun 11, 2019Updated 6 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆439Aug 22, 2018Updated 7 years ago
- PoC designed to evade userland-hooking anti-virus.☆90May 15, 2019Updated 7 years ago
- PoC for CVE-2019-0888 - Use-After-Free in Windows ActiveX Data Objects (ADO)☆39Jul 9, 2019Updated 6 years ago
- Research on Windows Kernel Executive Callback Objects☆317Feb 22, 2020Updated 6 years ago