ayoubfaouzi / windows-exploitation
My notes while studying Windows exploitation
☆188Updated last year
Alternatives and similar repositories for windows-exploitation
Users that are interested in windows-exploitation are comparing it to the libraries listed below
Sorting:
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆123Updated last year
- A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …☆143Updated 2 years ago
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆180Updated 3 years ago
- Recon 2023 slides and code☆79Updated last year
- Advanced driver monitoring utility.☆210Updated 2 years ago
- Kernel Exploits☆252Updated 3 years ago
- Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)☆222Updated last year
- A curated list of awesome Windows Exploitation resources, and shiny things.☆74Updated 7 years ago
- MalUnpack companion driver☆98Updated 10 months ago
- Windows System Programming Experiments☆218Updated 2 years ago
- Set of antianalysis techniques found in malware☆132Updated last year
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆178Updated 3 weeks ago
- A tutorial on how to write a packer for Windows!☆273Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆116Updated 10 months ago
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆109Updated 4 years ago
- My notes while studying Windows internals☆426Updated 5 months ago
- ☆114Updated last week
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆227Updated 2 years ago
- Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used …☆143Updated 2 years ago
- This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…☆203Updated 3 months ago
- Windows Kernel Programming☆128Updated 5 years ago
- Yet another variant of Process Hollowing☆393Updated 3 months ago
- Admin to Kernel code execution using the KSecDD driver☆249Updated last year
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆162Updated last month
- Some of my windows kernel exploits for learning purposes☆125Updated 2 years ago
- Code Injection, Inject malicious payload via pagetables pml4.☆237Updated 3 years ago
- An automatic unpacker and logger for DotNet Framework targeting files☆252Updated last year
- a PE Loader and Windows API tracer. Useful in malware analysis.☆138Updated 2 years ago
- A more stealthy variant of "DLL hollowing"☆348Updated last year
- RIXED LABS is open for contributions for it's community papers . If you want to publish a blog or a paper , it will be added to the site…☆80Updated 2 years ago