ayoubfaouzi / windows-exploitation

Related projects ⓘ

Alternatives and complementary repositories for windows-exploitation

• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆115Updated last year
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆123Updated 2 years ago
• Faran-17 / Windows-Internals
  Important notes and topics on my journey towards mastering Windows Internals
  ☆341Updated 6 months ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆242Updated 3 years ago
• ByteHackr / WindowsExploitation
  A curated list of awesome Windows Exploitation resources, and shiny things.
  ☆69Updated 7 years ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• LordNoteworthy / windows-internals
  My notes while studying Windows internals
  ☆400Updated this week
• am0nsec / vx
  Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
  ☆178Updated 2 years ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆221Updated 2 years ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆216Updated last year
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆139Updated this week
• floesen / KExecDD
  Admin to Kernel code execution using the KSecDD driver
  ☆238Updated 7 months ago
• frank2 / packer-tutorial
  A tutorial on how to write a packer for Windows!
  ☆248Updated 11 months ago
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆92Updated 5 months ago
• Cracked5pider / LdrLibraryEx
  A small x64 library to load dll's into memory.
  ☆424Updated last year
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆343Updated 3 weeks ago
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆201Updated 2 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆129Updated last year
• daem0nc0re / AtomicSyscall
  Tools and PoCs for Windows syscall investigation.
  ☆353Updated 6 months ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆148Updated 10 months ago
• therealdreg / x64dbg-exploiting
  Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs
  ☆78Updated 10 months ago
• TakahiroHaruyama / VDR
  Vulnerable driver research tool, result and exploit PoCs
  ☆181Updated last year
• n1ght-w0lf / WinDbgCheatSheet
  ☆135Updated 3 years ago
• dalvarezperez / CreateFile_based_rootkit
  ☆131Updated last year
• vxcute / WindowsInternals
  Yet another windows internals repo
  ☆205Updated 3 years ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆111Updated 4 months ago
• am0nsec / wspe
  Windows System Programming Experiments
  ☆216Updated 2 years ago
• hasherezade / process_overwriting
  Yet another variant of Process Hollowing
  ☆355Updated 8 months ago