zodiacon / Recon2023Links
Recon 2023 slides and code
☆79Updated last year
Alternatives and similar repositories for Recon2023
Users that are interested in Recon2023 are comparing it to the libraries listed below
Sorting:
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆124Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆115Updated 10 months ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆105Updated 2 years ago
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆110Updated 8 months ago
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆153Updated 2 months ago
- ☆73Updated 11 months ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆114Updated 2 years ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆117Updated 2 weeks ago
- Admin to Kernel code execution using the KSecDD driver☆250Updated last year
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆109Updated 11 months ago
- Aplos an extremely simple fuzzer for Windows binaries.☆69Updated 3 months ago
- A Python script to download PDB files associated with a Portable Executable (PE)☆121Updated 3 months ago
- ☆71Updated 2 years ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆117Updated last month
- ☆97Updated 3 years ago
- ☆114Updated last month
- ☆143Updated last year
- Exploitable drivers, you know what I mean☆132Updated last year
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆37Updated last year
- MalUnpack companion driver☆98Updated 11 months ago
- ☆105Updated 10 months ago
- ☆46Updated 2 months ago
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆109Updated 4 years ago
- ☆61Updated last year
- Report and exploit of CVE-2023-36427☆90Updated last year
- Finding Truth in the Shadows☆92Updated 2 years ago
- Windows x64 kernel mode rootkit process hollowing POC.☆191Updated last year
- Static Binary Instrumentation tool for Windows x64 executables☆203Updated last month
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆227Updated 2 years ago
- ☆100Updated 6 months ago