thecatenjoyer / singlestep_xorstub

Related projects ⓘ

Alternatives and complementary repositories for singlestep_xorstub

• zodiacon / NativePowers
  Native Powers Talk demos
  ☆14Updated last year
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆30Updated last year
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆49Updated 8 months ago
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆23Updated 3 months ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 2 years ago
• rbmm / DirectSysCall
  ☆12Updated last year
• dobin / ace-firefist
  Attack chain emulator. Write recipes for initial access easily
  ☆20Updated last year
• HACKE-RC / peritux
  A PE parser written in C++ which does not uses OOP. Helpful if you want to learn about PE parsing.
  ☆15Updated last year
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆26Updated 11 months ago
• RomanRybachek / CVE-2024-20698
  Analysis of the vulnerability
  ☆46Updated 9 months ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆38Updated 4 years ago
• vineetgaurav / WIN_JELLY
  Windows GPU rootkit PoC by Team Jellyfish
  ☆35Updated 9 years ago
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆99Updated last year
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆47Updated this week
• SpiralBL0CK / CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
  CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)
  ☆43Updated 3 weeks ago
• AlSch092 / ModifyExports
  Research of modifying exported function names at runtime (C/C++, Windows)
  ☆16Updated 5 months ago
• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆30Updated 2 years ago
• connormcgarr / EATGuard
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆92Updated last year
• dobin / RedEdr
  Collect Windows telemetry for Maldev
  ☆36Updated this week
• connormcgarr / An-Intro-2-Win-ED
  "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …
  ☆39Updated 4 years ago
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated last year
• xalicex / Unhook-Import-Address-Table
  Piece of code to detect and remove hooks in IAT
  ☆58Updated 2 years ago
• Sh3lldon / WinPWN
  This repo for Windows x32-x64 Kernel/Driver/User Mode Exploitation writeups and exploits
  ☆22Updated 6 months ago
• NtQuerySystemInformation / Malware-RE-papers
  Here are some of my malware reversing papers that I will be publishing
  ☆31Updated 2 years ago
• oldboy21 / SWAPPALA
  In-memory hiding technique
  ☆43Updated 5 months ago
• ioncodes / kdbg-driver-workstation
  ☆14Updated 2 years ago
• WhiteOakSecurity / MiniDumpDotNet
  ☆16Updated 2 years ago
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆34Updated 2 years ago
• susMdT / effective-waffle
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆69Updated last year