Collection of Windows usermode exploits targeting various third-party software applications, these exploits were written in preparation for the Offsec CTP/OSCE certification
☆146Aug 4, 2021Updated 4 years ago
Alternatives and similar repositories for OSCE
Users that are interested in OSCE are comparing it to the libraries listed below
Sorting:
- Resources for Windows exploit development☆1,649Dec 20, 2021Updated 4 years ago
- Public Exploits + Extra-curriculum for OSCE Exam Preparation☆79Sep 9, 2020Updated 5 years ago
- ☆318Apr 8, 2022Updated 3 years ago
- Collection of things made during my preparation to take on OSCE☆189Feb 24, 2022Updated 4 years ago
- A list of freely available resources that can be used as a prerequisite before taking OSCE.☆234Aug 21, 2020Updated 5 years ago
- Clone running process with ZwCreateProcess☆59Nov 8, 2020Updated 5 years ago
- Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)☆236Jun 22, 2023Updated 2 years ago
- Proof of Concept exploit scripts and fuzzing templates. Companion blog posts located at https://epi052.gitlab.io/notes-to-self/blog/2020…☆65May 31, 2020Updated 5 years ago
- Exploits made practicing for OSCE☆23Dec 3, 2020Updated 5 years ago
- x64 Windows Exploit Development☆116Aug 24, 2024Updated last year
- OSEE Preparation☆192Feb 15, 2019Updated 7 years ago
- My walkthrough of the LPEWorkshop exercises☆36Aug 17, 2020Updated 5 years ago
- ☆777Oct 17, 2023Updated 2 years ago
- Kernel Exploits☆260Jul 18, 2021Updated 4 years ago
- ☆98Dec 9, 2021Updated 4 years ago
- Token Privilege Research☆872Sep 1, 2017Updated 8 years ago
- A collection of OSCE preparation resources.☆24Oct 30, 2019Updated 6 years ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆215Jul 2, 2020Updated 5 years ago
- HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux☆2,946Feb 24, 2025Updated last year
- A collection of useful aggressor scripts. All credits due to its authors.☆12Jul 5, 2019Updated 6 years ago
- List of Awesome Advanced Windows Exploitation References☆1,548Jan 13, 2022Updated 4 years ago
- Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().☆218Mar 5, 2020Updated 5 years ago
- Alphanumeric Shellcode (x86) Encoder☆75Feb 24, 2022Updated 4 years ago
- Exploit Development, backdooring PE, bypassing Anti-Virus (AV), assembly shellcoding☆143Oct 3, 2021Updated 4 years ago
- C# code to run PIC using CreateThread☆17Apr 19, 2019Updated 6 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Jun 29, 2015Updated 10 years ago
- This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with t…☆931Jan 6, 2025Updated last year
- A collection of links related to VMware escape exploits☆1,494Sep 4, 2024Updated last year
- A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.☆442Apr 11, 2025Updated 10 months ago
- Loads any C# binary in mem, patching AMSI + ETW.☆839Oct 3, 2021Updated 4 years ago
- bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)☆599Jul 15, 2024Updated last year
- Some exploits, which I’ve created during my OSCE preparation.☆82Jul 7, 2018Updated 7 years ago
- Code and exercises for a workshop on z3 and angr☆234Dec 29, 2020Updated 5 years ago
- ☆90Oct 17, 2020Updated 5 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,606Jul 10, 2023Updated 2 years ago
- ☆2,168Feb 21, 2023Updated 3 years ago
- Windows System Programming Experiments☆222Jun 13, 2022Updated 3 years ago
- Corelan Repository for mona.py☆1,849Oct 31, 2025Updated 4 months ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆50Aug 31, 2020Updated 5 years ago