RITRedteam / goofkitLinks
In line function hooking LKM rootkit
☆51Updated 5 years ago
Alternatives and similar repositories for goofkit
Users that are interested in goofkit are comparing it to the libraries listed below
Sorting:
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆70Updated 3 years ago
- ☆27Updated 5 years ago
- Abusing exceptions for code execution.☆111Updated 2 years ago
- ☆47Updated 2 years ago
- Process reimaging proof of concept code☆96Updated 6 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆98Updated 4 years ago
- Matryoshka - stacked LKM loader☆52Updated last year
- Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.☆75Updated 3 years ago
- Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…☆117Updated 8 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 5 years ago
- ☆48Updated 4 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆49Updated 4 years ago
- Proxy system calls over an RPC channel☆98Updated 3 years ago
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- Helper idapython code for reversing kmdf drivers☆72Updated 2 years ago
- ☆49Updated 5 years ago
- TrashDBG the world's worse debugger☆23Updated 3 years ago
- ☆22Updated 4 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆89Updated 3 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆35Updated 4 years ago
- Reverse text segment x64 ELF infector written in Assembly☆20Updated 3 years ago
- A novel technique to communicate between threads using the standard ETHREAD structure☆112Updated 4 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆106Updated 5 years ago
- Windows API Hashes used in the malwares☆42Updated 9 years ago
- Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.☆28Updated 3 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆44Updated last year
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago