Various tools, PoCs and experiments related to my blog at https://www.forrest-orr.net/
☆41Jul 22, 2021Updated 4 years ago
Alternatives and similar repositories for ExploitDev
Users that are interested in ExploitDev are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Experiment building lifting-bits dependencies with pure CMake. Migrated to:☆22Oct 8, 2024Updated last year
- Phantom DLL hollowing PoC☆372May 23, 2022Updated 3 years ago
- ☆27Aug 8, 2021Updated 4 years ago
- ☆13Jul 15, 2021Updated 4 years ago
- Remove API hooks from a Beacon process.☆76Mar 13, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆12Sep 29, 2021Updated 4 years ago
- Corsair LL Access driver abuse☆24Apr 16, 2021Updated 5 years ago
- Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.☆76Nov 12, 2021Updated 4 years ago
- Collection of shellcode injection and execution techniques☆16Mar 17, 2026Updated last month
- ☆18Nov 24, 2020Updated 5 years ago
- A very proof-of-concept port of InlineWhispers for using syscalls in Nim projects.☆167Sep 10, 2021Updated 4 years ago
- PetitPotam fork with Kerberos support in the impacket script☆17Aug 3, 2021Updated 4 years ago
- A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of m…☆147May 23, 2022Updated 3 years ago
- Run Processes as PPL with ELAM☆176Mar 17, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A bunch of scripts and code i wrote.☆149Nov 7, 2024Updated last year
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!☆360Sep 1, 2022Updated 3 years ago
- ☆15Mar 17, 2025Updated last year
- WhoAmI by asking the LDAP service on a domain controller.☆66Feb 8, 2022Updated 4 years ago
- .lib file for linking against the NT CRT☆19Mar 18, 2022Updated 4 years ago
- ☆18Mar 1, 2021Updated 5 years ago
- The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls☆239Jan 20, 2024Updated 2 years ago
- A simple C++ driver base with KD data block☆11Jun 25, 2022Updated 3 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A pwning environment, now on docker!☆18Jul 3, 2021Updated 4 years ago
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆28Feb 15, 2022Updated 4 years ago
- Weaponizing CLRvoyance for Post-Ex .NET Execution☆38Jul 15, 2021Updated 4 years ago
- Windows process injection methods☆19Jul 18, 2021Updated 4 years ago
- A *very* imperfect attempt to correlate Kernel32 function calls to native API (Nt/Zw) counterparts/execution flow.☆28Dec 16, 2021Updated 4 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆242Nov 6, 2019Updated 6 years ago
- �☆51Sep 18, 2020Updated 5 years ago
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆10Jul 25, 2023Updated 2 years ago
- Subtract one PE file from another!☆20Oct 1, 2021Updated 4 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Simple PoCs for utilizing Windows syscalls in Go☆16Jan 13, 2021Updated 5 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 6 years ago
- An example pattern in C# for using WMI to monitor process creation and termination events.☆53Aug 13, 2018Updated 7 years ago
- Shellcode loader that loads shellcode from UUID's☆23Mar 17, 2026Updated last month
- My POC implementation of HVNC (Hidden VNC / Hidden Desktop)☆28Dec 30, 2024Updated last year
- ☆10Jun 11, 2022Updated 3 years ago
- quotes i like.☆17Aug 1, 2019Updated 6 years ago