☆49Nov 7, 2024Updated last year
Alternatives and similar repositories for warbird-demos
Users that are interested in warbird-demos are comparing it to the libraries listed below
Sorting:
- ☆31Sep 12, 2024Updated last year
- Fuzzing Harness and Unpatched Crash Results from Fuzzing Defender MpEngine☆40Jul 29, 2025Updated 7 months ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆37May 19, 2021Updated 4 years ago
- ☆118Aug 7, 2022Updated 3 years ago
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 2 years ago
- Reversed WintaPix Malware Source code | That targets countries in the Middle East and abuse KeServiceDescriptorTable(SSDT), persistence a…☆22Jul 6, 2024Updated last year
- Files related to works published in Black Mass☆10Sep 16, 2023Updated 2 years ago
- Cobaltstrike UDRL with memory evasion☆15May 16, 2024Updated last year
- NASM listing to shellcode converter☆14May 6, 2018Updated 7 years ago
- A simple C++ driver base with KD data block☆11Jun 25, 2022Updated 3 years ago
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 2 years ago
- mash hypervisor host pml4☆17Jun 22, 2022Updated 3 years ago
- A cmake template for crystal palace☆39Dec 20, 2025Updated 2 months ago
- ☆60Apr 25, 2025Updated 10 months ago
- Monitoring tool to detect patterns or IOCs (strings, regex, VirusTotal) and alert you and your team via console, Telegram or SMS written …☆18Feb 17, 2026Updated 2 weeks ago
- Demo code JavaScript POC that tricks user into sending Windows hash to responder☆37Dec 12, 2025Updated 2 months ago
- A few STUXNET samples and live traffic captures from July 2010 while many stuxnet implants were still operational.☆29Sep 17, 2024Updated last year
- PTE hook☆35Jun 15, 2024Updated last year
- load shellcode without P/D Invoke and VirtualProtect call.☆167Sep 2, 2025Updated 6 months ago
- Disk based DMA for ATA and SCSI☆42Sep 22, 2023Updated 2 years ago
- Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11☆84Jan 26, 2026Updated last month
- Small driver that uses alternative syscalls feature (the project is still under development).☆18May 9, 2024Updated last year
- C# code to run PIC using CreateThread☆17Apr 19, 2019Updated 6 years ago
- Windows 11 24H2-25H2 Runtime PatchGuard Bypass☆254Nov 4, 2025Updated 4 months ago
- Kibana app for RedELK☆18Mar 19, 2023Updated 2 years ago
- Golang PoC that sandboxes Defender (or other PPL) by setting its token integrity to Untrusted.☆12May 28, 2025Updated 9 months ago
- Packet Injection With WFP☆16Feb 20, 2023Updated 3 years ago
- ☆20Mar 15, 2023Updated 2 years ago
- Execute PowerShell code at the antimalware-light protection level.☆142Dec 13, 2022Updated 3 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆17Jun 11, 2024Updated last year
- Convert Microsoft Defender Antivirus Signatures (VDM) into a SQL DB☆24Jun 27, 2025Updated 8 months ago
- shell code example☆68Dec 12, 2025Updated 2 months ago
- 巨硬☆17Oct 4, 2023Updated 2 years ago
- CPU-Z Exploit Proof of Concept☆32Feb 17, 2019Updated 7 years ago
- MacOS Shared Library to Shellcode Loader☆54Feb 23, 2026Updated last week
- Bypass UAC by abusing shell protocol handlers☆14Jul 12, 2021Updated 4 years ago
- A self-hosted Armory implementation.☆21Jan 1, 2026Updated 2 months ago
- A poc that abuses Enclave☆40Sep 8, 2022Updated 3 years ago
- A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆116Oct 19, 2025Updated 4 months ago