REcon 2024 Repo, slides for talk "GOP Complex: Image parsing bugs, EBC polymorphic engines and the Deus ex machina of UEFI exploit dev""
☆14Mar 31, 2025Updated 11 months ago
Alternatives and similar repositories for REcon2024-GOP-Complex
Users that are interested in REcon2024-GOP-Complex are comparing it to the libraries listed below
Sorting:
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- ☆16Mar 3, 2025Updated last year
- System Call Integrity Layer - experimental security research☆25Jan 31, 2026Updated last month
- Rust template/library for implementing your own COFF loader☆72Jan 27, 2025Updated last year
- An example code of CiGetCertPublisherName☆16Mar 24, 2022Updated 3 years ago
- A simple but useful project maybe help you reverse Windows.☆41Apr 2, 2024Updated last year
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆118Jun 30, 2024Updated last year
- ☆24Jul 15, 2023Updated 2 years ago
- This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-…☆17Sep 26, 2025Updated 5 months ago
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆117Jan 20, 2025Updated last year
- A python script that automates a C2 Profile build☆48Dec 14, 2025Updated 2 months ago
- command control framework☆32Feb 28, 2026Updated last week
- A simple UEFI bootkit made by @NSG650 and me.☆26Dec 29, 2024Updated last year
- A collection of position independent coding resources☆107Nov 15, 2025Updated 3 months ago
- This repo contains PoCs for vulnerable Windows drivers.☆130Dec 20, 2025Updated 2 months ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆72Nov 11, 2025Updated 3 months ago
- Slides and videos from talks given at cons☆25Jun 19, 2025Updated 8 months ago
- HackSysExtremeVulnerableDriver exploits for latest Windows 10 version☆26Jan 13, 2026Updated last month
- Open source implementation of Warcraft 3☆35Feb 22, 2026Updated last week
- Port of zentool to Windows☆27Mar 7, 2025Updated last year
- Simple Demo of using Windows Hypervisor Platform☆29Jul 14, 2025Updated 7 months ago
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆64Dec 25, 2025Updated 2 months ago
- Hotkey-based keylogger for Windows☆32Oct 17, 2024Updated last year
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆64Aug 9, 2024Updated last year
- This repro contains all the code and documentation for the MiniKvm project and the CH9329 controller☆29Jan 27, 2025Updated last year
- Sample Rust crate used to implement a VBS enclave in Rust☆44Jun 3, 2025Updated 9 months ago
- Mentally ill EtwTi parser☆68Jan 11, 2026Updated last month
- Windows Kernel API wrapper with simplified functions and enterprise driver extensions.☆33Jul 8, 2025Updated 7 months ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆32Aug 11, 2023Updated 2 years ago
- ☆48Jun 6, 2025Updated 9 months ago
- ☆11May 17, 2024Updated last year
- ☆34Apr 14, 2025Updated 10 months ago
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆140Aug 31, 2025Updated 6 months ago
- ☆30Aug 24, 2025Updated 6 months ago
- "Bypassing" HVCI via donor PFN swaps to modify read-only code pages. Call chained kernel functions (kCET and SLAT support), modify read-o…☆95Feb 14, 2026Updated 3 weeks ago
- Runtime smm module loader☆37Jan 12, 2023Updated 3 years ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆82Jun 21, 2025Updated 8 months ago
- An IDA plugin that can be used to partially synchronize IDBs between different users reversing the same binaries☆139Jan 8, 2025Updated last year
- Slides about HyperDbg☆39Feb 11, 2026Updated 3 weeks ago