levanvn / APT32_DeobfuscateLinks
My scripts to deobfuscate APT32 malware
☆26Updated 3 years ago
Alternatives and similar repositories for APT32_Deobfuscate
Users that are interested in APT32_Deobfuscate are comparing it to the libraries listed below
Sorting:
- Writeup and POC for CVE-2020-0753, CVE-2020-0754 and six fixed Window DOS Vulnerabilities.☆14Updated 5 years ago
- My conference presentations and Materials for them.☆32Updated 2 years ago
- Collection of slides☆33Updated last year
- ☆24Updated 2 years ago
- CVE-2021-1732 poc & exp; tested on 20H2☆67Updated 4 years ago
- ☆49Updated 6 years ago
- Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM☆123Updated 4 years ago
- PoC demonstrating the use of cve-2020-1034 for privilege escalation☆124Updated 4 years ago
- Proof of concept exploit of Windows Update Orchestrator Service Elevation of Privilege Vulnerability☆121Updated 4 years ago
- Windows API Hashes used in the malwares☆41Updated 9 years ago
- Learnings about windows Internals☆93Updated last year
- An exploit for CVE-2019-17026. It pops xcalc and was tested on Ubuntu (x64).☆48Updated 4 years ago
- Windows Common Log File System Driver POC☆95Updated 3 years ago
- Web user interface and service agent for the monitoring and remote management of WinAFL.☆52Updated last month
- LPE for CVE-2020-1054 targeting Windows 7 x64☆86Updated 4 years ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆98Updated 4 years ago
- Extract OLEv1 objects from RTF files by instrumenting Word☆51Updated 5 years ago
- Vulnerability analysis and proof of concepts☆34Updated 2 years ago
- Here is python script I wrote for deobfuscation APT32 sample.☆10Updated 4 years ago
- ☆50Updated 5 years ago
- Win32k Exploit by Grant Willcox☆89Updated 6 years ago
- ☆130Updated 2 years ago
- Exploits for YARA 3.7.1 & 3.8.1☆31Updated 6 years ago
- Windows (ShadowMove) Socket Duplication☆83Updated 5 years ago
- EoP POC for CVE-2019-1132☆61Updated 5 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆37Updated 6 years ago
- CVE-2021-1732 Microsoft Windows 10 本地提权漏 研究及Poc/Exploit开发☆81Updated 4 years ago
- An command-line RPC method enumerator, born out of RPCView's awesomeness☆104Updated 5 years ago
- IDA SIG files for multiarch uClibc library☆37Updated 6 years ago
- ☆12Updated 4 years ago