p0dalirius / volatility3-symbols

Related projects: ⓘ

• sfewer-r7 / CVE-2023-34362
  CVE-2023-34362: MOVEit Transfer Unauthenticated RCE
  ☆62Updated 5 months ago
• airbus-cert / minusone
  Powershell Linter
  ☆46Updated 2 months ago
• Diego-AltF4 / GLUFS
  GLUFS allows you to automate the tedious process of finding leaks using format string vulnerabilities.
  ☆25Updated 2 years ago
• Sq00ky / SMB-Session-Spoofing
  ☆117Updated last year
• Wh04m1001 / CVE-2023-20178
  ☆90Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆68Updated 6 months ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆112Updated last year
• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆190Updated last year
• h4wkst3r / Blackhat-USA-2022-Materials
  Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks
  ☆64Updated 2 years ago
• synacktiv / ntdissector
  ☆119Updated last month
• Diefunction / ZabbixAPIAbuse
  Abuse Zabbix API to obtain Remote Command Execution on hosts
  ☆17Updated 3 years ago
• yo-yo-yo-jbo / injection_and_hooking_intro
  ☆38Updated last year
• synacktiv / bbs
  bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or ch…
  ☆78Updated 2 months ago
• Dfte / Impersonate
  Binary and CrackMapExec module to impersonate tokens on a windows machine
  ☆45Updated 2 years ago
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆57Updated 6 months ago
• Wh04m1001 / SysmonEoP
  ☆179Updated last year
• Immersive-Labs-Sec / SliverC2-Forensics
  A collection of tools and detections for the Sliver C2 Frameworj
  ☆104Updated last year
• OmriBaso / BesoToken
  A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).
  ☆94Updated last year
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆80Updated last year
• morRubin / NegoExRelay
  ☆83Updated 2 years ago
• RedTeamOperations / Journey-to-McAfee
  ☆110Updated 2 years ago
• synacktiv / Prox-Ez
  ☆63Updated last year
• grigoritchy / pocs
  ☆72Updated 10 months ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆158Updated 3 months ago
• bmdyy / quote_db
  QuoteDB (Vulnerable TCP Server)
  ☆58Updated 9 months ago
• naacbin / CovenantDecryptor
  ☆19Updated 9 months ago
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆35Updated 10 months ago
• FuzzySecurity / BHUSA-2023
  ☆102Updated 2 months ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆95Updated last year
• itm4n / Pentest-Windows
  Windows internals and exploitation tricks
  ☆90Updated 3 months ago