googleprojectzero / symboliclink-testing-toolsLinks
☆796Updated 2 years ago
Alternatives and similar repositories for symboliclink-testing-tools
Users that are interested in symboliclink-testing-tools are comparing it to the libraries listed below
Sorting:
- PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.☆646Updated 10 months ago
- RpcView is a free tool to explore and decompile Microsoft RPC interfaces☆983Updated last year
- Token Privilege Research☆827Updated 7 years ago
- Checksec, but for Windows: static detection of security mitigations in executables☆591Updated 5 months ago
- Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py☆328Updated 2 years ago
- DEFCON 27 workshop - Modern Debugging with WinDbg Preview☆726Updated 7 months ago
- collect for learning cases☆586Updated last year
- Dump of win32k POCs for bugs I've found☆375Updated 3 years ago
- Quickly debug shellcode extracted during malware analysis☆604Updated 2 years ago
- Set of tools to analyze Windows sandboxes for exposed attack surface.☆2,182Updated last month
- ☆489Updated 7 years ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆813Updated 3 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆390Updated 5 years ago
- A small, null-free Windows shellcode that executes calc.exe (x86/x64, all OS/SPs)☆414Updated last year
- Extract Windows Defender database from vdm files and unpack it☆443Updated last week
- Examples of leaking Kernel Mode information from User Mode on Windows☆605Updated 7 years ago
- A memory scanning evasion technique☆872Updated 8 years ago
- A tool to create a JScript file which loads a .NET v2 assembly from memory.☆1,287Updated 4 years ago
- Also known by Microsoft as Knifecoat☆1,136Updated 2 years ago
- This is a standalone exploit for a vulnerable feature in Capcom.sys☆305Updated 2 years ago
- LSASS memory dumper using direct system calls and API unhooking.☆1,534Updated 4 years ago
- A tool to elevate privilege with Windows Tokens☆1,045Updated last year
- Shellcode Compiler☆1,110Updated 9 months ago
- A tool to exploit .NET Remoting Services☆514Updated 10 months ago
- Tools for instrumenting Windows Defender's mpengine.dll☆300Updated 6 years ago
- Expriments☆463Updated 8 months ago
- ☆307Updated 3 years ago
- An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.☆520Updated 5 years ago
- The exploit samples database is a repository for **RCE** (remote code execution) exploits and Proof-of-Concepts for **WINDOWS**, the samp…☆746Updated last year
- AV/EDR evasion via direct system calls.☆1,891Updated 2 years ago