ch3rn0byl / ANTfs
☆42Updated last year
Related projects ⓘ
Alternatives and complementary repositories for ANTfs
- call gates as stable comunication channel for NT x86 and Linux x86_64☆30Updated last year
- Enabled / Disable LSA Protection via BYOVD☆62Updated 2 years ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆92Updated last year
- Dll injection through code page id modification in registry. Based on jonas lykk research☆117Updated last year
- ☆104Updated 2 years ago
- API Hammering with C++20☆34Updated 2 years ago
- Minifilter Callback Patching Proof-of-Concept☆61Updated 2 years ago
- ☆18Updated last year
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆28Updated 2 years ago
- ☆26Updated 11 months ago
- Here are some of my malware reversing papers that I will be publishing☆31Updated 2 years ago
- A UEFI extraction tool☆11Updated last week
- ☆65Updated last year
- It's pointy and it hurts!☆122Updated 2 years ago
- A Poc on blocking Procmon from monitoring network events☆97Updated 2 years ago
- ☆83Updated 5 months ago
- Native Powers Talk demos☆14Updated last year
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)☆43Updated 3 weeks ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- A Practical example of ELAM (Early Launch Anti-Malware)☆30Updated 2 years ago
- Repository of Microsoft Driver Block Lists based off of OS-builds☆38Updated 6 months ago
- ☆76Updated 2 months ago
- Winbindex bot to pull in binaries for specific releases☆46Updated last year
- A more reliable way of resolving syscall numbers in Windows☆49Updated 8 months ago
- Windows AppLocker Driver (appid.sys) LPE☆35Updated 3 months ago
- A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022☆105Updated last year
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- Sleep obfuscation☆47Updated this week
- Reimplementation of the KExecDD DSE bypass technique.☆42Updated 2 months ago
- RunPE adapted for x64 and written in C, does not use RWX☆24Updated 5 months ago