ch3rn0byl / ANTfs
☆43Updated last year
Related projects ⓘ
Alternatives and complementary repositories for ANTfs
- Enabled / Disable LSA Protection via BYOVD☆62Updated 2 years ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆30Updated last year
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆93Updated last year
- Minifilter Callback Patching Proof-of-Concept☆62Updated 2 years ago
- A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022☆105Updated 2 years ago
- Dll injection through code page id modification in registry. Based on jonas lykk research☆117Updated last year
- Proof-of-Concept for CVE-2024-26218☆47Updated 6 months ago
- ☆106Updated 2 years ago
- One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel☆43Updated last year
- Exploitable drivers, you know what I mean☆126Updated 7 months ago
- ☆65Updated last year
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆28Updated 2 years ago
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆59Updated last year
- using the gpu to hide your payload☆47Updated 2 years ago
- Report and exploit of CVE-2023-36427☆87Updated last year
- Bypass UAC on Windows 10/11 x64 using ms-settings DelegateExecute registry key.☆76Updated 2 years ago
- ☆84Updated 5 months ago
- A Poc on blocking Procmon from monitoring network events☆98Updated 2 years ago
- ☆27Updated last year
- NT AUTHORITY\SYSTEM☆38Updated 4 years ago
- It's pointy and it hurts!☆122Updated 2 years ago
- A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.☆85Updated last year
- ☆18Updated last year
- API Hammering with C++20☆34Updated 2 years ago
- ☆36Updated last year
- Splitting and executing shellcode across multiple pages☆99Updated last year
- The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.☆54Updated 7 months ago
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆64Updated last year