h0mbre / Windows-Exploits
☆87Updated 3 years ago
Related projects: ⓘ
- ☆123Updated this week
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆94Updated 4 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆65Updated 2 years ago
- Random CVEs☆27Updated last year
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆81Updated 2 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- ☆151Updated 3 years ago
- ☆37Updated this week
- NT AUTHORITY\SYSTEM☆37Updated 4 years ago
- Command like tool to print mitigation flags for running processes in a memory dump☆41Updated 4 years ago
- Enabled / Disable LSA Protection via BYOVD☆61Updated 2 years ago
- Windows API Hashes used in the malwares☆38Updated 9 years ago
- TrashDBG the world's worse debugger☆24Updated 2 years ago
- Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.☆72Updated 2 years ago
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆118Updated 2 years ago
- ☆49Updated 4 years ago
- CVE-2021-29337 - Privilege Escalation in MODAPI.sys (MSI Dragon Center)☆29Updated 2 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 2 years ago
- Helper idapython code for reversing kmdf drivers☆68Updated 2 years ago
- Inter-Process Communication Mechanisms☆24Updated 4 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆103Updated 4 years ago
- ☆56Updated last year
- ☆128Updated last year
- arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆52Updated 2 years ago
- ☆15Updated 8 months ago
- In line function hooking LKM rootkit☆51Updated 4 years ago
- ☆44Updated 5 years ago
- A novel technique to communicate between threads using the standard ETHREAD structure☆108Updated 3 years ago
- rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.☆12Updated last year
- Write-ups for FireEye's FLARE-On challenges☆25Updated 5 years ago