zodiacon / Recon2023Links
Recon 2023 slides and code
☆79Updated 2 years ago
Alternatives and similar repositories for Recon2023
Users that are interested in Recon2023 are comparing it to the libraries listed below
Sorting:
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆117Updated last year
- How to set up 2 VirtualBox VM to debug kernel driver using windbg☆55Updated 3 years ago
- masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)☆124Updated last year
- ☆113Updated 3 weeks ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆116Updated 2 years ago
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆113Updated 10 months ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆106Updated 2 years ago
- ☆105Updated last year
- ☆74Updated last year
- ☆96Updated 3 years ago
- Aplos an extremely simple fuzzer for Windows binaries.☆69Updated 5 months ago
- A Python script to download PDB files associated with a Portable Executable (PE)☆124Updated 5 months ago
- ☆71Updated 2 years ago
- Exploit targeting NT kernel in 24H2 Windows Insider Preview☆135Updated last year
- ☆49Updated 4 months ago
- Winbindex bot to pull in binaries for specific releases☆48Updated last year
- ☆57Updated 3 months ago
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆109Updated 4 years ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆37Updated 5 months ago
- A dynamic unpacking tool☆137Updated last year
- Windows x64 kernel mode rootkit process hollowing POC.☆191Updated 2 years ago
- Bypass Malware Time Delays☆102Updated 2 years ago
- Monitors ETW for security relevant syscalls maintaining the set called by each unique process☆81Updated 2 years ago
- Repo containing my public talks☆23Updated 2 years ago
- Writeups for CTF challenges☆31Updated last year
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆37Updated 2 years ago
- Some of my windows kernel exploits for learning purposes☆130Updated 3 years ago
- Exploitable drivers, you know what I mean☆151Updated last year
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆99Updated last year
- C# Utilities for Windows Notification Facility☆153Updated 3 months ago