zeze-zeze / 2023iThomeLinks
☆33Updated 6 months ago
Alternatives and similar repositories for 2023iThome
Users that are interested in 2023iThome are comparing it to the libraries listed below
Sorting:
- ☆53Updated 2 years ago
- ☆29Updated last year
- PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)☆106Updated 4 years ago
- ☆59Updated last year
- Windows x86 PE Packer In C++☆52Updated 5 years ago
- This repo contains EXPs about Vulnerable Windows Driver☆45Updated last year
- PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)☆161Updated 4 years ago
- ☆29Updated 8 months ago
- arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆57Updated 3 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆67Updated 3 years ago
- A simple but useful project maybe help you reverse Windows.☆38Updated last year
- 2021 iThome 鐵人賽☆47Updated last year
- Command like tool to print mitigation flags for running processes in a memory dump☆46Updated 4 years ago
- POC about how to prevent windbg break☆15Updated 2 years ago
- Call NtCreateUserProcess directly as normal.☆71Updated 3 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆60Updated 4 years ago
- Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post☆63Updated 9 months ago
- HackSysExtremeVulnerableDriver exploits for latest Windows 10 version☆25Updated 3 years ago
- ☆30Updated last year
- An example of how x64 kernel shellcode can dynamically find and use APIs☆106Updated 5 years ago
- ☆11Updated 5 months ago
- Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.☆71Updated 3 years ago
- Remove WPP calls from hexrays decompiled code☆48Updated 2 months ago
- Security research helper for CLFS drivers☆14Updated 9 months ago
- Convert PE files to a shellcode☆76Updated 5 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆23Updated 7 years ago
- Windows LPE exploit for CVE-2022-37969☆134Updated last year
- ☆69Updated 2 years ago
- ☆10Updated 4 years ago
- Inject unsigned DLL into Protected Process Light (PPL)☆24Updated last month