ionescu007 / hazmat5View external linksLinks
Local OXID Resolver (LCLOR) : Research and Tooling
☆37May 19, 2021Updated 4 years ago
Alternatives and similar repositories for hazmat5
Users that are interested in hazmat5 are comparing it to the libraries listed below
Sorting:
- automates exploits using ROP chains, using ntdll-scraper☆16May 26, 2022Updated 3 years ago
- mash hypervisor host pml4☆17Jun 22, 2022Updated 3 years ago
- ☆44Nov 7, 2024Updated last year
- ☆48May 12, 2021Updated 4 years ago
- ☆16May 20, 2022Updated 3 years ago
- A Binary Ninja plugin that uses bruteforced XFG hashes to recover precise function prototypes☆16Feb 7, 2024Updated 2 years ago
- ☆31Dec 5, 2024Updated last year
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Aug 11, 2023Updated 2 years ago
- VCL-based UI components for system tools that use NtUtilsLibrary☆21Nov 20, 2025Updated 2 months ago
- A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP☆37Jul 27, 2021Updated 4 years ago
- A WinDbg extension to trace COM interactions☆131Aug 14, 2025Updated 6 months ago
- Find kernel32 base and API addresses. Simple C++ implementation☆24Apr 7, 2022Updated 3 years ago
- One gate to all syscalls!☆23Mar 12, 2022Updated 3 years ago
- Corsair LL Access driver abuse☆24Apr 16, 2021Updated 4 years ago
- ☆130Sep 14, 2020Updated 5 years ago
- ☆28Aug 19, 2020Updated 5 years ago
- Run Processes as PPL with ELAM☆175Mar 17, 2022Updated 3 years ago
- Lightweight cryptography☆14Nov 7, 2022Updated 3 years ago
- StenographyShellcodeLoader☆43Sep 8, 2020Updated 5 years ago
- ☆44Oct 16, 2023Updated 2 years ago
- POC tools for exploring SMB over QUIC protocol☆130Apr 6, 2022Updated 3 years ago
- ☆25May 21, 2021Updated 4 years ago
- Simple Demo of using Windows Hypervisor Platform☆29Jul 14, 2025Updated 7 months ago
- A ready-made template for a project based on libpeconv.☆51Oct 31, 2025Updated 3 months ago
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆28Feb 15, 2022Updated 4 years ago
- leaking net-ntlm with webdav☆26Feb 23, 2021Updated 4 years ago
- ☆79Aug 5, 2024Updated last year
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- A simple C++ driver base with KD data block☆11Jun 25, 2022Updated 3 years ago
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 2 years ago
- ☆11Jun 9, 2020Updated 5 years ago
- Small memory leak PoC that is happening in IopGetDeviceInterfaces☆25Oct 18, 2020Updated 5 years ago
- Arbitrary File Delete in Windows Installer before 10.0.19045.2193☆30Nov 6, 2022Updated 3 years ago
- This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…☆284May 14, 2020Updated 5 years ago
- Lenovo Diagnostics Driver EoP - Arbitrary R/W☆177Dec 5, 2022Updated 3 years ago
- Citrix Phishlet☆24Feb 2, 2021Updated 5 years ago
- A kernel mode Windows rootkit in development.☆49Dec 31, 2021Updated 4 years ago
- Documenting system information classes and their uses☆56Oct 18, 2021Updated 4 years ago
- Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.☆76Nov 12, 2019Updated 6 years ago