EvanMcBroom / pocsView external linksLinks
My Proof of Concept code for different publicly disclosed vulnerabilities
☆47May 15, 2024Updated last year
Alternatives and similar repositories for pocs
Users that are interested in pocs are comparing it to the libraries listed below
Sorting:
- A simple UEFI bootkit made by @NSG650 and me.☆26Dec 29, 2024Updated last year
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- Repository of different kernel drivers written while studying Windows NT Driver development☆12Apr 14, 2024Updated last year
- allowing um r/w through km from um ioctl ™☆11Jan 2, 2022Updated 4 years ago
- ☆21Jan 15, 2025Updated last year
- An In-memory Embedding of CPython☆31May 24, 2021Updated 4 years ago
- A simple Linux in-memory .so loader☆33Mar 29, 2023Updated 2 years ago
- Admin to Kernel code execution using the KSecDD driver☆264Apr 19, 2024Updated last year
- Run python from a single exe☆35May 1, 2022Updated 3 years ago
- BasicLDR: A Reflective DLL Loader☆14Jun 11, 2024Updated last year
- Rust template/library for implementing your own COFF loader☆71Jan 27, 2025Updated last year
- ☆26Mar 10, 2022Updated 3 years ago
- Load a dynamic library from memory by modifying the native Windows loader☆282Jun 18, 2025Updated 7 months ago
- ☆126Sep 1, 2024Updated last year
- in-process powershell runner for BRC4☆48Oct 31, 2023Updated 2 years ago
- shell code example☆67Dec 12, 2025Updated 2 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 10 months ago
- Sleep Obfuscation☆45Oct 13, 2022Updated 3 years ago
- AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.☆67Jun 14, 2020Updated 5 years ago
- HookDetection☆45Sep 3, 2021Updated 4 years ago
- List the ETW provider(s) in the registration table of a process.☆80Sep 20, 2023Updated 2 years ago
- Quick and dirty PoSH code to read teams messages☆23Feb 5, 2025Updated last year
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"☆178Nov 26, 2021Updated 4 years ago
- ☆13Aug 25, 2021Updated 4 years ago
- WinRemoteEnum is a module-based collection of operations achievable by a low-privileged domain user.☆13Oct 24, 2022Updated 3 years ago
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 2 years ago
- doesnt work and wont work on it anymore☆10Jul 8, 2024Updated last year
- Demonstrate the new FileDispositionInfoEx behavior☆15Nov 6, 2017Updated 8 years ago
- break link between dll and it file on disk☆12Sep 2, 2024Updated last year
- ☆151Oct 2, 2023Updated 2 years ago
- Windows x64 Process Injection via Ghostwriting with Dynamic Configuration☆29Oct 29, 2021Updated 4 years ago
- Example of building an application verifer DLL☆51Jun 1, 2024Updated last year
- StoneKeeper C2, an experimental EDR evasion framework for research purposes☆208Dec 25, 2024Updated last year
- Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider☆197Dec 6, 2022Updated 3 years ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆408Jan 11, 2026Updated last month
- A payload delivery system which embeds payloads in an executable's icon file!☆74Jan 26, 2024Updated 2 years ago
- Files for http://deniable.org/windows/windows-callbacks☆26Jul 9, 2020Updated 5 years ago
- ☆46Jun 21, 2023Updated 2 years ago