Giter Club home page Giter Club logo

xrv3ovl's Projects

pastdse icon pastdse

DSE bypass using a leaked cert and adjusting the current clock.

peacemaker icon peacemaker

PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.

physmem_drivers icon physmem_drivers

A collection of various vulnerable (mostly physical memory exposing) drivers.

pinkpanther icon pinkpanther

Windows x64 handcrafted token stealing kernel-mode shellcode

ppdump-public icon ppdump-public

Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDump() Shellcode

pplib icon pplib

Elevate a process to be a protected process

privileger icon privileger

Privileger is a tool to work with Windows Privileges

proxy-function-calls-for-etwti icon proxy-function-calls-for-etwti

The code is a pingback to the Dark Vortex blog: https://0xdarkvortex.dev/hiding-memory-allocations-from-mdatp-etwti-stack-tracing/

realblindingedr icon realblindingedr

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

rhaast icon rhaast

doesnt work and wont work on it anymore

rippl icon rippl

RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows

rtypes icon rtypes

A simple but useful project maybe help you reverse Windows.

sentinelbruh icon sentinelbruh

Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution

shadow_syscall icon shadow_syscall

convenient use of syscalls with a single line and a comfort wrapper, unfriendly for reverse engineer

skardriver icon skardriver

IOCTL Dispatch driver to rw mem and more, the last version was used all over the community so i deicded to reamek the usermode (and km ;)). This is meant to learn and hope u learn shit from the kernel mode documentation i did

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.