lil-skelly / basilisk
☆10Updated last month
Alternatives and similar repositories for basilisk:
Users that are interested in basilisk are comparing it to the libraries listed below
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆57Updated 2 weeks ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆99Updated last year
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆92Updated last year
- ☆42Updated 2 years ago
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆109Updated 7 months ago
- I/O Cache-As-Ram + AMD x86_64 cache line locking | Mirror of https://codeberg.org/3itch/icekit☆14Updated last month
- ☆43Updated last month
- LPE exploit for CVE-2023-36802☆22Updated last year
- Finding Truth in the Shadows☆89Updated 2 years ago
- An example of an external LLVM plugin module transform pass for the latest versions.☆14Updated 5 months ago
- A collection of position independent coding resources☆77Updated 2 months ago
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆42Updated 9 months ago
- Minifilter Callback Patching Proof-of-Concept☆68Updated 2 years ago
- Next gen process injection technique☆52Updated 4 years ago
- ☆34Updated last year
- "Service-less" driver loading☆152Updated 4 months ago
- using the gpu to hide your payload☆57Updated 2 years ago
- Malware?☆69Updated 6 months ago
- MIPS VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator.☆113Updated 4 months ago
- Slides for COM Hijacking AV/EDR Talk on 38c3☆73Updated 3 months ago
- ☆46Updated last year
- Admin to Kernel code execution using the KSecDD driver☆244Updated last year
- bypassing intel txt's tboot integrity checks via coreboot shim☆65Updated last month
- Small PoC of using a Microsoft signed executable as a lolbin.☆137Updated 2 years ago
- Exploiting the KsecDD Windows driver through Server Silos☆67Updated 5 months ago
- ☆35Updated last month
- a stage1 DLL loader with sleep obfuscation☆35Updated 2 years ago
- Win32 keylogger that supports all (non-ime using) languages correctly☆49Updated last year
- A more reliable way of resolving syscall numbers in Windows☆49Updated last year
- ☆63Updated last year