hongson11698 / defender-database-extract
defender_database
☆17Updated last year
Alternatives and similar repositories for defender-database-extract:
Users that are interested in defender-database-extract are comparing it to the libraries listed below
- ☆40Updated 3 years ago
- ☆59Updated last year
- 从admin冲到TrustedInstaller☆17Updated 2 years ago
- LPE of CVE-2024-26230☆23Updated 8 months ago
- Inject unsigned DLL into Protected Process Light (PPL)☆21Updated 4 months ago
- Command like tool to print mitigation flags for running processes in a memory dump☆46Updated 4 years ago
- ☆12Updated 4 years ago
- Just another version of the custom stack call from Proxy-Function-Calls-For-ETwTI☆33Updated 2 years ago
- Files for http://deniable.org/windows/windows-callbacks☆25Updated 4 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Updated 3 years ago
- Windows Defender VDM lua collections☆47Updated 2 years ago
- POC For CVE-2022-24483☆14Updated 3 years ago
- A simple but useful project maybe help you reverse Windows.☆37Updated last year
- Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)☆20Updated 5 years ago
- Here is python script I wrote for deobfuscation APT32 sample.☆10Updated 3 years ago
- Collection of slides☆33Updated last year
- Vulnerability analysis and proof of concepts☆34Updated last year
- ☆25Updated 6 years ago
- 参考taviso的代码逆向一下mpengine.dll☆19Updated 2 years ago
- Security research helper for CLFS drivers☆14Updated 8 months ago
- ☆11Updated 2 years ago
- ☆12Updated 3 years ago
- ☆20Updated 3 months ago
- ☆34Updated last year
- poc code for CVE-2024-38080☆30Updated 8 months ago
- ☆70Updated 3 months ago
- A PoC tool for exploiting leaked process and thread handles☆31Updated last year
- A kernel mode Windows rootkit in development.☆48Updated 3 years ago
- Windows API Hashes used in the malwares☆40Updated 9 years ago
- ☆39Updated last year