Cr4sh

EDR-Telemetry

This project aims to compare and evaluate the telemetry of various EDR products.

unKover

PoC Anti-Rootkit to uncover Windows Drivers/Rootkits mapped to Kernel Memory.

bootfuzz

A MBR Fuzzer

lkrg

Linux Kernel Runtime Guard

thc-tips-tricks-hacks-cheat-sheet

Various tips & tricks

miniDumpReader

ioctlance

A tool that is used to hunt vulnerabilities in x64 WDM drivers

ZDI-24-020

Automated-MUlti-UAC-Bypass

Automated Multi UAC BYPASS for win10|win11|win12-pre-release|ws2019|ws2022

CVE-2024-20698

Analysis of the vulnerability

SimpleNTSyscallFuzzer

Misc-Research

A collection of tools, scripts and personal research

win_shellcode_builder

Building Windows Shellcode in Linux

kasld

Kernel Address Space Layout Derandomization (KASLD) - A collection of various techniques to infer the Linux kernel base virtual address as an unprivileged local user, for the purpose of bypassing Kernel Address Space Layout Randomization (KASLR).

Tartarus-TpAllocInject

Artillery

CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administrator.

MITMonster

A monster cheatsheet on MITM attacks

pykd

PyKD

PyKD DLLs for x86 and x64 platforms

Periscope

Fully Integrated Adversarial Operations Toolkit (C2, stagers, agents, ephemeral infrastructure, phishing engine, and automation)

v-shuttle

ndisapi

Windows Packet Filter library for network packet interception and manipulation, suitable for custom firewall, VPN and traffic analysis applications.

ssh-key-backdoor

linux_kernel_hacking

Linux Kernel Hacking

PAExec

Remote execution, like PsExec

ThunderScope

ThunderScope GitHub Repo

TaskSchedulerMisc

Misc TaskScheduler Plays

IDiagnosticProfileUAC

BypassCredGuard

Credential Guard Bypass Via Patching Wdigest Memory

CVE-2022-21894

baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability