whokilleddb / HelloWorldDriverLinks
Get started with writing your first ever Windows Driver
☆33Updated last year
Alternatives and similar repositories for HelloWorldDriver
Users that are interested in HelloWorldDriver are comparing it to the libraries listed below
Sorting:
- quASAR: ASAR manipulation made easy☆38Updated 2 years ago
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆19Updated 5 months ago
- Slides for the talk we presented as UniPi at DefCon's Red Team Village☆23Updated 2 years ago
- Lena's scripts/code/resources for malware analysis☆27Updated last year
- Situational Awareness script to identify how and where to run implants☆52Updated 6 months ago
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago
- ☆33Updated 2 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆38Updated 3 years ago
- ☆69Updated last year
- Enable or Disable TokenPrivilege(s)☆13Updated last year
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆14Updated last year
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52Updated last year
- in-process powershell runner for BRC4☆45Updated last year
- A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system☆39Updated 7 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- IAT Unhooking proof-of-concept☆29Updated last year
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆82Updated last year
- Explore and filter your GitHub starred repositories☆27Updated last year
- Mythic C2 wrapper for NimSyscallPacker☆25Updated 3 months ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆78Updated 10 months ago
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆37Updated 6 months ago
- A pure C version of SymProcAddress☆27Updated last year
- ☆18Updated 3 weeks ago
- A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80☆20Updated 2 months ago
- ☆36Updated last year
- ☆59Updated last year
- Lifetime AMSI bypass.☆35Updated 2 months ago
- Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation☆31Updated 2 years ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated last year
- ☆37Updated 6 months ago