automates exploits using ROP chains, using ntdll-scraper
☆16May 26, 2022Updated 3 years ago
Alternatives and similar repositories for ChainEngine
Users that are interested in ChainEngine are comparing it to the libraries listed below
Sorting:
- A kernel mode Windows rootkit in development.☆49Dec 31, 2021Updated 4 years ago
- Constexpr hash functions for C++☆19May 29, 2020Updated 5 years ago
- hooks gServerHandlers xxxEventWndProc☆13May 1, 2022Updated 3 years ago
- ☆10Aug 16, 2019Updated 6 years ago
- A PoC tool for exploiting leaked process and thread handles☆32Feb 13, 2024Updated 2 years ago
- Find kernel32 base and API addresses. Simple C++ implementation☆23Apr 7, 2022Updated 3 years ago
- Windows NT port of 'Main is usually a function. So then when is it not?'☆27Mar 11, 2024Updated 2 years ago
- 一些研究☆14Dec 18, 2019Updated 6 years ago
- 关于intel和amd指令行为不一样这件事☆62Apr 15, 2022Updated 3 years ago
- leaking net-ntlm with webdav☆26Feb 23, 2021Updated 5 years ago
- Walks through the 4-level paging structures in Windows x64☆13Feb 12, 2023Updated 3 years ago
- 🐞 A simple Windows x86 debugging framework written in C++20 that supports software breakpoints and hardware breakpoints. It can be used …☆13Mar 30, 2025Updated 11 months ago
- ☆22Jan 16, 2022Updated 4 years ago
- Modern C++ bindings for the Win32 API.☆16Aug 22, 2014Updated 11 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆37May 19, 2021Updated 4 years ago
- A simple way to spoof return addresses using an exception handler☆44Aug 3, 2022Updated 3 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆23Nov 22, 2021Updated 4 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆22Apr 13, 2018Updated 7 years ago
- ☆16Apr 21, 2023Updated 2 years ago
- Capcom wrapper with safety in mind.☆83May 27, 2018Updated 7 years ago
- this application shows EAC sdk's memory leak.☆10Nov 30, 2021Updated 4 years ago
- ☆21Jul 27, 2020Updated 5 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Aug 11, 2023Updated 2 years ago
- pdb's function and global vars to offset☆10Apr 11, 2023Updated 2 years ago
- PoC for CVE-2017-0075☆37Sep 12, 2019Updated 6 years ago
- IO隐藏通信封装☆17May 31, 2021Updated 4 years ago
- XOrCryptEx lightweight C Utility/Algorithm☆11Mar 3, 2022Updated 4 years ago
- ☆12Feb 8, 2021Updated 5 years ago
- ☆16May 20, 2022Updated 3 years ago
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.☆38Mar 16, 2022Updated 4 years ago
- pass game protect☆12Apr 26, 2014Updated 11 years ago
- Fork of Synacktiv's private Lumina server☆21Feb 22, 2022Updated 4 years ago
- Basic HTTP Server with a feature to invoke a shell in the dir the files are being served from.☆12Apr 14, 2018Updated 7 years ago
- Compileable POC of namazso's x64 return address spoofer.☆50Jun 10, 2020Updated 5 years ago
- A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP☆37Jul 27, 2021Updated 4 years ago
- POC For CVE-2022-24483☆14Apr 12, 2022Updated 3 years ago
- Automatically exported from code.google.com/p/hookme☆13Oct 8, 2015Updated 10 years ago
- x86/x64 dll injector☆31May 17, 2022Updated 3 years ago
- spring-cloud-gateway-rce CVE-2022-22947☆13Jul 13, 2022Updated 3 years ago