Ap3x's starred repositories
mal_unpack_py
Python wrappers for mal_unpack
CobaltStrikeScan
Scan files or process memory for CobaltStrike beacons and parse their configuration
protections-artifacts
Elastic Security detection content for Endpoint
GhostMapperUM
manual map unsigned driver over signed memory
windbg-exts
Various WinDbg extensions and scripts
physsec-methodology
A public, open source physical security methodology
RobloxDumper
roblox x86 dumper [04/2023]
HookingNirvana
Recon 2015 Presentation from Alex Ionescu
JobExplorer
Explore Job Objects on a Windows system
Knowledge-Management-for-Offensive-Security-Professionals
Knowledge Management for Offensive Security Professionals Official Repository
Unhook-Import-Address-Table
Piece of code to detect and remove hooks in IAT
physmem_drivers
A collection of various vulnerable (mostly physical memory exposing) drivers.
OffensivePH
OffensivePH - use old Process Hacker driver to bypass several user-mode access controls
libelevate
Handle elevation DKOM against ObRegisterCallbacks
perfect-dll-proxy
Perfect DLL Proxying using forwards with absolute paths.
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
BE-Shellcode
Code for Battleyes shellcode