Michael B.'s starred repositories
thunderclap-fpga-arria10
Thunderclap hardware for Intel Arria 10 FPGA
process-cloning
The Definitive Guide To Process Cloning on Windows
no-defender
A slightly more fun way to disable windows defender + firewall. (through the WSC api)
obfuscator
PE bin2bin obfuscator
SandboxSecurityTools
Security testing tools for Windows sandboxing technologies
CVE-2024-21111
Oracle VirtualBox Elevation of Privilege (Local Privilege Escalation) Vulnerability
RTCore64_Vulnerability
Use RTCore64 to map your driver on windows 11.
unicorn-for-efi
Unicorn Engine port for UEFI firmware
CVE-2024-1086
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
KernelDrawing
Drawing from kernelmode without any hooks
Shared-FlushFileBuffers-Communication
Cool kernel communication method.
EnjoyTheRing0
Шаблон полнофункционального драйвера и обёртки над ядерным API
Dse-Patcher
Patches DSE by swapping both data ptrs located in SeValidateImageHeader && SeValidateImageData
kernel_payload_comms
A proof of concept demonstrating communication via mapped shared memory structures between a user-mode process and a kernel-mode payload on Windows 10 20H2.