Run executables in an AppContainer
☆125Jan 21, 2019Updated 7 years ago
Alternatives and similar repositories for RunAppContainer
Users that are interested in RunAppContainer are comparing it to the libraries listed below
Sorting:
- a sandbox project by sudami☆17Jul 31, 2018Updated 7 years ago
- A file system filter, you can do some interesting thing, maybe it's cool.☆55Feb 15, 2019Updated 7 years ago
- View handles and object for each object type☆64Sep 1, 2019Updated 6 years ago
- POC for a race condition exploit using directory junctions in Windows☆17Apr 26, 2020Updated 5 years ago
- The kernel mode Standard Template Library Template☆19Feb 22, 2020Updated 6 years ago
- Code Integrity Violation Spotter☆17Jun 11, 2024Updated last year
- Some crazy PE executables protection kernel driver☆20May 2, 2020Updated 5 years ago
- API Set Viewer☆91Jan 20, 2025Updated last year
- Ready-to-use headers for Windows Kernel SSDT indices☆11Apr 12, 2020Updated 5 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆240Nov 6, 2019Updated 6 years ago
- Reverse engineering toolkit for exploit/malware analysis☆35May 10, 2020Updated 5 years ago
- This repository contains some tools that I have written in the past☆28Nov 11, 2023Updated 2 years ago
- Kernel Pool Monitor☆127Mar 6, 2022Updated 3 years ago
- driver interface with dll-injection capabilities☆28Nov 5, 2020Updated 5 years ago
- ☆12Aug 2, 2017Updated 8 years ago
- P2C Loader based on blackbone, used by isolation.top and others.☆13Jan 2, 2018Updated 8 years ago
- This is a pintool that can analyze target dynamically and output code blocks and "key frames".☆14Mar 26, 2015Updated 10 years ago
- Global DLL injector☆71May 16, 2021Updated 4 years ago
- Simple driver to register all available process, thread, image, Registry, and Object callbacks☆124Oct 5, 2017Updated 8 years ago
- Mitigating DLL preloading attacks.☆66Jun 25, 2025Updated 8 months ago
- usermode standalone kernel interface☆111Jul 9, 2018Updated 7 years ago
- C++ Exceptions in Windows Drivers☆221Dec 21, 2020Updated 5 years ago
- ☆44Oct 7, 2018Updated 7 years ago
- win10 pgContext dynamic dump (btc version)☆110Jan 15, 2020Updated 6 years ago
- Driver and WinDBG scripts to dump information about all resources and lookaside lists☆66Apr 4, 2020Updated 5 years ago
- c++ implementation of windows heavens gate☆70Feb 12, 2021Updated 5 years ago
- Driver Loader/BE Bypass/Win Malware(lol)☆36Jun 25, 2019Updated 6 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆62Nov 18, 2020Updated 5 years ago
- Reverse engineered source code of the autochk rootkit☆209Nov 1, 2019Updated 6 years ago
- Windows Process Lockdown Tool using Job Objects☆70Nov 10, 2013Updated 12 years ago
- Open Course for diving security internal☆52Nov 11, 2019Updated 6 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆35Aug 3, 2018Updated 7 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Jan 23, 2018Updated 8 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆110Apr 24, 2020Updated 5 years ago
- User-mode program parsing logs created by HyperPlatform☆18Aug 15, 2016Updated 9 years ago
- Visual Studio 2019 extension for building C/C++ projects with the LLVM Compiler Toolchain (installed separately).☆14Jul 3, 2021Updated 4 years ago
- A tool evaluates security configurations of a given PE based on SDL without source code☆15Jul 6, 2014Updated 11 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆104May 14, 2020Updated 5 years ago
- Driver demonstrating how to register a DPC to asynchronously wait on an object☆50Jan 15, 2021Updated 5 years ago