Various tools, PoCs and experiments related to my blog at https://www.forrest-orr.net/
☆42Jul 22, 2021Updated 4 years ago
Alternatives and similar repositories for ExploitDev
Users that are interested in ExploitDev are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Experiment building lifting-bits dependencies with pure CMake. Migrated to:☆22Oct 8, 2024Updated last year
- Phantom DLL hollowing PoC☆374May 23, 2022Updated 4 years ago
- ☆28Aug 8, 2021Updated 4 years ago
- Remove API hooks from a Beacon process.☆77Mar 13, 2022Updated 4 years ago
- ☆12Sep 29, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Corsair LL Access driver abuse☆24Apr 16, 2021Updated 5 years ago
- Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.☆75Nov 12, 2021Updated 4 years ago
- Collection of shellcode injection and execution techniques☆17Mar 17, 2026Updated 3 months ago
- ☆18Nov 24, 2020Updated 5 years ago
- A very proof-of-concept port of InlineWhispers for using syscalls in Nim projects.☆167Sep 10, 2021Updated 4 years ago
- PetitPotam fork with Kerberos support in the impacket script☆17Aug 3, 2021Updated 4 years ago
- A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of m…☆147May 23, 2022Updated 4 years ago
- Run Processes as PPL with ELAM☆177Mar 17, 2022Updated 4 years ago
- A bunch of scripts and code i wrote.☆153Nov 7, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- Samples from my book Windows Native API programming☆83May 11, 2025Updated last year
- FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!☆358Sep 1, 2022Updated 3 years ago
- ☆23Jun 4, 2026Updated 3 weeks ago
- WhoAmI by asking the LDAP service on a domain controller.☆66Feb 8, 2022Updated 4 years ago
- .lib file for linking against the NT CRT☆19Mar 18, 2022Updated 4 years ago
- ☆18Mar 1, 2021Updated 5 years ago
- The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls☆243Jan 20, 2024Updated 2 years ago
- A simple C++ driver base with KD data block☆11Jun 25, 2022Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A pwning environment, now on docker!☆18Jul 3, 2021Updated 4 years ago
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆28Feb 15, 2022Updated 4 years ago
- Windows process injection methods☆21Jul 18, 2021Updated 4 years ago
- Weaponizing CLRvoyance for Post-Ex .NET Execution☆39Jul 15, 2021Updated 4 years ago
- A *very* imperfect attempt to correlate Kernel32 function calls to native API (Nt/Zw) counterparts/execution flow.☆28Dec 16, 2021Updated 4 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆243Nov 6, 2019Updated 6 years ago
- ☆51Sep 18, 2020Updated 5 years ago
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆10Jul 25, 2023Updated 2 years ago
- Subtract one PE file from another!☆20Oct 1, 2021Updated 4 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Simple PoCs for utilizing Windows syscalls in Go☆15Jan 13, 2021Updated 5 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 6 years ago
- An example pattern in C# for using WMI to monitor process creation and termination events.☆52Aug 13, 2018Updated 7 years ago
- Shellcode loader that loads shellcode from UUID's☆23Mar 17, 2026Updated 3 months ago
- My POC implementation of HVNC (Hidden VNC / Hidden Desktop)☆28Dec 30, 2024Updated last year
- ☆10Jun 11, 2022Updated 4 years ago
- XOR crypt/decrypt using C#☆12Sep 30, 2020Updated 5 years ago