Sh3lldon / WinPWN
This repo for Windows x32-x64 Kernel/Driver/User Mode Exploitation writeups and exploits
☆22Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for WinPWN
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆23Updated 3 months ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆40Updated 8 months ago
- API Hammering with C++20☆34Updated 2 years ago
- In-memory hiding technique☆43Updated 5 months ago
- Just another Process Injection using Process Hollowing technique.☆16Updated last year
- using the gpu to hide your payload☆47Updated 2 years ago
- e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!☆23Updated 2 months ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆30Updated last year
- Windows AppLocker Driver (appid.sys) LPE☆35Updated 3 months ago
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- Splitting and executing shellcode across multiple pages☆99Updated last year
- Research of modifying exported function names at runtime (C/C++, Windows)☆16Updated 5 months ago
- ☆26Updated 11 months ago
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆24Updated last year
- A utility that can be used to launch an executable with a DLL injected☆19Updated 11 months ago
- Offensive Assembly code snippets.☆10Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated last year
- Standalone Metasploit-like XOR encoder for shellcode☆45Updated 5 months ago
- Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules☆42Updated last year
- a demo module for the kaine agent to execute and inject assembly modules☆35Updated 2 months ago
- Sleep obfuscation☆47Updated this week
- Demo from the Malware Analysis and Development Webinar☆19Updated 6 months ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆32Updated last year
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)☆43Updated 3 weeks ago
- Persistence techniques for windows.☆19Updated last year
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆21Updated last month
- ☆21Updated 6 months ago
- A COFF Loader written in Rust☆26Updated last week