Ap3x - Giters

Ap3x's starred repositories

rocksdb

A library that provides an embeddable, persistent key-value store for fast storage.

Language:C++GPL-2.028005 1004 3170

simplewall

Simple tool to configure Windows Filtering Platform (WFP) which can configure network activity on your computer.

Language:CGPL-3.05856 110 1531

Penetration-Testing-Tools

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

Language:PowerShellMIT2518 84 6

WindowsInternals

Windows Internals Book 7th edition Tools

Language:CMIT2314 147 12

PolyHook_2_0

C++20, x86/x64 Hooking Libary v2.0

Language:C++MIT1562 50 106

ILMerge

ILMerge is a static linker for .NET Assemblies.

Language:C#MIT1223 111 74

reverst

Reverse Tunnels in Go over HTTP/3 and QUIC

Language:GoApache-2.0904 4 6

toolkit

The essential toolkit for reversing, malware analysis, and cracking

Language:Inno SetupNOASSERTION639 26 9

Shoggoth

Shoggoth: Asmjit Based Polymorphic Encryptor

Language:C++624 12 6

obfus.h

Macro-header for compile-time C obfuscation (tcc, win x86/x64)

Language:CMIT623 12 2

HandleKatz

PIC lsass dumper using cloned handles

Language:C568 12 6

Kernel-dll-injector

Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module

Language:C398 14 2

LetMeowIn

A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.

Language:C++349 9 5

DivertTCPconn

A TCP packet diverter for Windows platform

Language:CLGPL-3.0295 9 3

lsa-whisperer

Tools for interacting with authentication packages using their individual message protocols

Language:C++MIT273 17 1

distormx

The ultimate hooking library

Language:CNOASSERTION253 18 2

FindWDK

CMake module for building drivers with Windows Development Kit (WDK)

Language:CMakeBSD-3-Clause243 13 18

hiding-your-syscalls

Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction within NTDLL.

Language:C211 120

tcpcrypt

Fast TCP encryption

Language:CNOASSERTION206 27 9

KDP-compatible-driver-loader

KDP compatible unsigned driver loader leveraging a write primitive in one of the IOCTLs of gdrv.sys

Language:C10100

KernelCallbackTable-Injection

Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html

Language:C97 5 1

ospy

Automatically exported from code.google.com/p/ospy

Language:C#97 9 27

CallbackDisabler

Disable Driver Callbacks

Language:C94 6 1

flower

a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor

Language:C92 2 1

MagicDot

A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue

Language:PythonBSD-3-Clause86 20

Exploits

Repo with different exploits & PoCs

Language:C55 5 4

Cheat-Loader-Base

A basic cheat loader with login and injector. Works for csgo, tf2 and gtav.

Language:C++MIT41 10

GoodKit

Rootkit for the blue team. Sophisticated and optimized LKM to detect and prevent malicious activity

Language:C++33 10

interceptor

Sample Rust Hooking Engine

Language:Rust32 20

Erebus

Erebus is a payload generator written in Nim.

Language:Nim10 2 2