Ap3x's starred repositories
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
protections-artifacts
Elastic Security detection content for Endpoint
CobaltStrikeScan
Scan files or process memory for CobaltStrike beacons and parse their configuration
OffensivePH
OffensivePH - use old Process Hacker driver to bypass several user-mode access controls
physmem_drivers
A collection of various vulnerable (mostly physical memory exposing) drivers.
libelevate
Handle elevation DKOM against ObRegisterCallbacks
perfect-dll-proxy
Perfect DLL Proxying using forwards with absolute paths.
HookingNirvana
Recon 2015 Presentation from Alex Ionescu
BE-Shellcode
Code for Battleyes shellcode
GhostMapperUM
manual map unsigned driver over signed memory
Knowledge-Management-for-Offensive-Security-Professionals
Knowledge Management for Offensive Security Professionals Official Repository
JobExplorer
Explore Job Objects on a Windows system
Unhook-Import-Address-Table
Piece of code to detect and remove hooks in IAT
physsec-methodology
A public, open source physical security methodology
mal_unpack_py
Python wrappers for mal_unpack
windbg-exts
Various WinDbg extensions and scripts
RobloxDumper
roblox x86 dumper [04/2023]