FuzzySecurity / BHUSA-2023Links
☆105Updated 11 months ago
Alternatives and similar repositories for BHUSA-2023
Users that are interested in BHUSA-2023 are comparing it to the libraries listed below
Sorting:
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆112Updated 9 months ago
- ☆107Updated 2 years ago
- Local & remote Windows DLL Proxying☆164Updated last year
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.☆102Updated last year
- ☆155Updated 6 months ago
- �☆113Updated 3 years ago
- Find DLLs with RWX section☆81Updated last year
- Detect EDR's exceptions by inspecting processes' loaded modules☆130Updated last year
- Exploitation of process killer drivers☆201Updated last year
- A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.☆314Updated last year
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆140Updated 11 months ago
- ☆119Updated last year
- Slides for COM Hijacking AV/EDR Talk on 38c3☆74Updated 5 months ago
- ☆136Updated 2 years ago
- Python based WinDbg script to automate the search for code caves in binaries and libraries.☆49Updated 5 months ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆125Updated last week
- Windows Persistence IT-Security☆101Updated 3 months ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year
- ☆257Updated last year
- Aplos an extremely simple fuzzer for Windows binaries.☆69Updated 4 months ago
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆100Updated last year
- ☆186Updated last year
- Tools for analyzing EDR agents☆230Updated last year
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆265Updated 9 months ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆104Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆116Updated 11 months ago
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆93Updated last year
- Windows rootkit designed to work with BYOVD exploits☆200Updated 5 months ago
- I have created these custom servers for preparing EXP-301 course (aka WUMED) exam and hope it will help to take OSED certification. Feel …☆46Updated last year