FuzzySecurity / BHUSA-2023
☆103Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for BHUSA-2023
- Local & remote Windows DLL Proxying☆160Updated 5 months ago
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆95Updated 7 months ago
- A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.☆301Updated last year
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆111Updated 2 months ago
- ☆133Updated last year
- ☆105Updated last year
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆209Updated 2 months ago
- Slides & Code snippets for a workshop held @ x33fcon 2024☆240Updated 5 months ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆325Updated 5 months ago
- ☆105Updated 9 months ago
- ☆175Updated 11 months ago
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆146Updated 3 weeks ago
- Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak☆174Updated last year
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆63Updated 2 months ago
- IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.☆90Updated 10 months ago
- A set of programs for analyzing common vulnerabilities in COM☆155Updated 2 months ago
- A bunch of scripts and code i wrote.☆131Updated 2 weeks ago
- DLL proxying for lazy people☆136Updated 3 weeks ago
- Tools for analyzing EDR agents☆209Updated 5 months ago
- Find DLLs with RWX section☆75Updated last year
- BSides Prishtina 2024 Malware Development and Persistence workshop☆61Updated last month
- Exploitation of process killer drivers☆188Updated last year
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆125Updated 4 months ago
- EDRSandblast-GodFault☆240Updated last year
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆95Updated 7 months ago
- Aplos an extremely simple fuzzer for Windows binaries.☆66Updated 7 months ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆113Updated 5 months ago
- Rust For Windows Cheatsheet☆110Updated 3 weeks ago
- ☆118Updated last year