rbmm / partial
d
☆13Updated 8 months ago
Related projects: ⓘ
- ☆15Updated 3 years ago
- Repository of Microsoft Driver Block Lists based off of OS-builds☆38Updated 5 months ago
- ☆21Updated this week
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆32Updated 3 years ago
- ☆17Updated 3 years ago
- ☆16Updated 5 years ago
- Self-Loading Registration Free COM Functions☆11Updated 4 years ago
- ☆27Updated last year
- Remote PE reflective injection with a simple reflective loader☆28Updated 5 years ago
- ☆19Updated this week
- ☆20Updated 3 years ago
- An example of COM hijacking using a proxy DLL.☆20Updated 3 years ago
- ☆31Updated this week
- ☆40Updated this week
- A Practical example of ELAM (Early Launch Anti-Malware)☆27Updated 2 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆20Updated 2 years ago
- Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler☆26Updated 3 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16Updated 2 years ago
- ☆23Updated 2 years ago
- ☆31Updated 4 years ago
- Execute an arbitrary command within the context of another process☆19Updated 5 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆30Updated 3 years ago
- Clone running process with ZwCreateProcess☆58Updated 3 years ago
- Tiny driver patch to allow kernel callbacks to work on Win10 21h1☆31Updated 2 years ago
- Manually perform syscalls without going through any external API or DLL.☆16Updated last year
- Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.☆23Updated 3 years ago
- ☆10Updated 4 years ago
- Data and structures regarding the research done on WdFilter☆13Updated 4 years ago
- ☆13Updated this week