connormcgarr / Kernel-Escalation-of-Privileges-Payloads

Related projects: ⓘ

• connormcgarr / An-Intro-2-Win-ED
  "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …
  ☆39Updated 4 years ago
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆39Updated 2 years ago
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• dis0rder0x00 / CanYouCTheThief
  A C implementation of the Sektor7 "A Thief" Windows privesc technique.
  ☆59Updated 2 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 4 years ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆35Updated 9 years ago
• xalicex / Unhook-Import-Address-Table
  Piece of code to detect and remove hooks in IAT
  ☆51Updated 2 years ago
• jbaines-r7 / dellicious
  Enabled / Disable LSA Protection via BYOVD
  ☆61Updated 2 years ago
• ORCA666 / KCTHIJACK
  ☆43Updated this week
• fdiskyou / windows-ps-callbacks-experiments
  ☆40Updated this week
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆34Updated 2 years ago
• FULLSHADE / AntiDebugging
  ☆29Updated this week
• hackerhouse-opensource / envschtasksuacbypass
  Bypass UAC elevation on Windows 8 (build 9600) & above.
  ☆53Updated 2 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆39Updated this week
• SecIdiot / bootdoor
  ☆31Updated this week
• OmerYa / ROPInjector
  Rite Of Passage ROP Injector
  ☆33Updated 5 years ago
• passthehashbrowns / suspendedunhook
  ☆36Updated 3 years ago
• hasherezade / SweetDreams
  Implementation of Advanced Module Stomping and Heap/Stack Encryption
  ☆8Updated last year
• sailay1996 / FileWrite2system
  File Write Weapon for Privilege Escalation To get SYSTEM
  ☆17Updated 4 years ago
• NtQuerySystemInformation / Malware-RE-papers
  Here are some of my malware reversing papers that I will be publishing
  ☆30Updated 2 years ago
• waleedassar / SyscallNumberExtractor
  ☆23Updated 2 years ago
• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆27Updated 2 years ago
• loneicewolf / KernelMode-Code
  2022 Updated Kernelmode-Code
  ☆29Updated 5 months ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆30Updated 11 months ago
• NtQuerySystemInformation / NlsCodeInjectionThroughRegistry
  Dll injection through code page id modification in registry. Based on jonas lykk research
  ☆116Updated last year
• slaeryan / WKPExercises
  ☆19Updated this week
• SolomonSklash / UnhookingPOC
  A small commented POC for removing API hooks placed by AV/EDR.
  ☆33Updated 4 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆65Updated 3 years ago
• jaamaal / Embed
  Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…
  ☆19Updated 3 years ago