Bring your own Unwind Data Framework
☆77Mar 15, 2026Updated this week
Alternatives and similar repositories for BYOUD
Users that are interested in BYOUD are comparing it to the libraries listed below
Sorting:
- Proof of Concepts of vulnerabilities discovered by me☆11Jan 24, 2024Updated 2 years ago
- Vectored Exception Handling Squared☆31Dec 27, 2025Updated 2 months ago
- A powerful Windows command-line tool for analyzing and searching ETW (Event Tracing for Windows) provider permissions from the Windows re…☆64Jul 29, 2025Updated 7 months ago
- a tiny code that performs kernel-mode read/write using CVE-2023-38817.☆18Mar 28, 2025Updated 11 months ago
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 2 years ago
- A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user☆41Aug 15, 2024Updated last year
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆129Jan 28, 2026Updated last month
- Post-Ex BOF tooling for Hannibal☆24Nov 20, 2024Updated last year
- Sample Rust Hooking Engine☆36Apr 5, 2024Updated last year
- takes shellcode bad-bytes and banishes them, returning cleaned shellcode with preserved functionalities☆59Mar 1, 2026Updated 2 weeks ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆73Nov 11, 2025Updated 4 months ago
- BasicLDR: A Reflective DLL Loader☆14Jun 11, 2024Updated last year
- Develop macOS apps on Windows with seamless cross-platform tools.☆16Jun 5, 2025Updated 9 months ago
- A cmake template for crystal palace☆39Dec 20, 2025Updated 2 months ago
- remote process injections using pool party techniques☆70Jun 29, 2025Updated 8 months ago
- My CTF tools & some other stuff☆20Aug 12, 2024Updated last year
- Filesystem interaction via firebeam virtual machine execution☆34Updated this week
- ☆20Aug 27, 2024Updated last year
- A Crystal Palace shared library to resolve & perform syscalls☆58Oct 29, 2025Updated 4 months ago
- This repository contains a collection of scripts I use regularly for offensive security-related tasks.☆16Mar 9, 2026Updated last week
- A proof-of-concept to demonstrate randomized execution paths and their impact on call stack signatures — ideal for EDR testing, behavior-…☆25Jan 17, 2026Updated 2 months ago
- ☆15Mar 17, 2025Updated last year
- Evasion kit for Cobalt Strike☆30Jan 16, 2026Updated 2 months ago
- ☆11Jun 30, 2023Updated 2 years ago
- ☆53Jun 28, 2025Updated 8 months ago
- homepage for memfit AI☆25Updated this week
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆140Aug 31, 2025Updated 6 months ago
- Satanic Crypter A powerful tool designed to convert EXE files into BAT files with advanced features and a modern GUI interface.☆11Jan 4, 2025Updated last year
- GreenLambert macOS IDA plugin to deobfuscate strings☆14Oct 4, 2021Updated 4 years ago
- PoC script to demonstrate collection of SCCM attack paths that can be viewed in BH with OpenGraph☆24Aug 2, 2025Updated 7 months ago
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆14Jul 9, 2023Updated 2 years ago
- kubernetes rootkit☆34Dec 18, 2023Updated 2 years ago
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆73Apr 13, 2025Updated 11 months ago
- ...☆10Feb 16, 2015Updated 11 years ago
- Dreg's setup for lldb reversing. The simplest and easiest possible, without scripting. lldb debugging setup.☆14May 2, 2024Updated last year
- Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…☆199Jun 17, 2025Updated 9 months ago
- Awesome MalDev Links☆46Mar 2, 2026Updated 2 weeks ago
- WinRAR 0day CVE-2025-8088 PoC RAR Archive☆45Aug 12, 2025Updated 7 months ago
- The most extensive collection of BOFs (Beacon Object Files) tailored for Red Teams using C++23☆23Jun 19, 2025Updated 8 months ago