WildByDesign / AppContainer-Launcher
AppContainer and LPAC (Less Privileged AppContainer) Launcher with Capabilities
☆57Updated last year
Related projects: ⓘ
- Scripts to prepare Windows system for debugging.☆29Updated 3 years ago
- All TMF files that I extracted from Microsoft PDBs.☆12Updated 5 years ago
- DotNext 2019 St. Petersburg Talk Demos☆36Updated 5 years ago
- Diff tool for comparing symbols in PDB files☆83Updated 4 years ago
- Analysis and manipulation of extended attribute ($EA) on NTFS☆38Updated 9 years ago
- Demos for Presentation on Windows Runtime Security☆70Updated 5 years ago
- Enhanced version of the GFlags tool☆82Updated 5 years ago
- ☆21Updated this week
- ☆33Updated 3 years ago
- Blocks drivers from loading by using a name collision technique. #nsacyber☆44Updated 6 years ago
- Windows Process Lockdown Tool using Job Objects☆69Updated 10 years ago
- IDAPython scripts☆15Updated 7 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆72Updated 5 years ago
- ☆33Updated 6 years ago
- ☆16Updated last year
- A PowerShell module to assist in parsing and managing catalog files.☆19Updated 7 years ago
- Control Flow Guard Teleportation demo☆23Updated 5 years ago
- Blog posts☆30Updated 4 years ago
- Demos and presentation from SECArmy Village Grayhat 2020☆36Updated last year
- Faster version of `symchk /om` for generating PDB manifests of offline machines☆19Updated 3 years ago
- WNF Utilities 4 Newbies (WNFUN)☆89Updated 5 years ago
- The hidden mstsc recorder player☆28Updated 4 years ago
- Parse Microsoft shim databases☆28Updated 2 weeks ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆49Updated 2 years ago
- Example/starter code for custom Windows application compatibility shims☆29Updated 3 years ago
- ☆21Updated 8 years ago
- BCD is a module to interact with boot configuration data (BCD) either locally or remotely using the ROOT/WMI:Bcd* WMI classes. The functi…☆60Updated 4 years ago
- A PowerShell binding for the Unicorn Engine☆17Updated 8 years ago
- ☆19Updated this week