qtc-de / rpv

Related projects: ⓘ

• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆23Updated last month
• outflanknl / unmanaged-dotnet-patch
  Modify managed functions from unmanaged code
  ☆49Updated 7 months ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆40Updated 10 months ago
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆12Updated 2 months ago
• Kharos102 / interceptor
  Sample Rust Hooking Engine
  ☆32Updated 5 months ago
• kyleavery / pendulum
  Linux Sleep Obfuscation
  ☆87Updated 8 months ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆37Updated last year
• rasta-mouse / KerbApp
  ☆27Updated 3 months ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆28Updated last year
• rbmm / Services
  ☆17Updated last year
• rbmm / DirectSysCall
  ☆11Updated last year
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆49Updated 7 months ago
• xforcered / AdvSim.Cryptography
  Simple and sane cryptographic wrapper library.
  ☆26Updated last year
• fern89 / runpe-x64
  RunPE adapted for x64 and written in C, does not use RWX
  ☆23Updated 4 months ago
• yo-yo-yo-jbo / virtual_memory_known_dlls
  ☆18Updated last year
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆19Updated last year
• yoavshah / ImportlessApi
  ☆18Updated 9 months ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆48Updated last week
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆63Updated last year
• BlackSnufkin / NyxInvoke
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆45Updated this week
• tijme / conferences
  Some of the presentations, workshops, and labs I gave at public conferences.
  ☆21Updated last week
• dobin / ace-firefist
  Attack chain emulator. Write recipes for initial access easily
  ☆19Updated last year
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆23Updated 10 months ago
• Ne0nd0g / go-coff
  Load and execute a common object file format (COFF) in the current process
  ☆21Updated 6 months ago
• dxxzero / rusty_drivers
  BYOVD collection
  ☆19Updated 6 months ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆24Updated last year
• RobinFassinaMoschiniForks / TransitionalPeriod
  Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits
  ☆28Updated 2 years ago
• D4rthMaulCop / DumpKernel-S1
  A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80
  ☆18Updated 9 months ago
• Wh04m1001 / GamingServiceEoP5
  ☆27Updated 4 months ago
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆98Updated last year