Shashank Shekhar's repositories
Diamorphine
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)
HEVD-Kernel-Stack-BOF-SMEP-Win10-64bit-1607
A Windows Kernel LPE exploit for HEVD.sys targeting a stack overflow vulnerability on Windows 10 64-bit 1607 (RS1)
APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
ceload
Loading dbk64.sys and grabbing a handle to it
CVE-2020-15368
How to exploit a vulnerable windows driver. Exploit for AsrDrv104.sys
Disclosures
Zero-day and N-day security vulnerability notes, analysis, and proof-of-concepts
DrvLoader
A post exploitation utility for loading signed kernel drivers using both the undocumented NtLoadDriver function and by directly interfacing with the Windows Service Control Manager (SCM)
ExFreePool-Vulnerability
My research into taking advantage of ExFreePool primitives.
exploit_mitigations
Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
gbhv
Simple x86-64 VT-x Hypervisor with EPT Hooking
how-to-exploit-a-double-free
How to exploit a double free vulnerability in 2021. 'Use-After-Free for Dummies'
infosec-resources
A list of helpful cybersecurity / infosec resources
java-fp-exercises
Exploring higher order functions with linked lists and recursion in Java
Learning-C
A series of mini-projects used to learn C for beginners
LsassMiniDumpWriteDump
Create a MiniDump for lsass.exe
malware-samples
Malware samples, analysis exercises and other interesting resources.
malware_training_vol1
Materials for Windows Malware Analysis training (volume 1)
MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
memestream
Code from my "game modding" livestreams! Follow along and learn
OSCE
Collection of Windows usermode exploits targeting various third-party software applications, these exploits were written in preparation for the Offsec CTP/OSCE certification
PageTableInjection
Code Injection, Inject malicious payload via pagetables pml4.
pe-Parser
A lightweight utility for parsing PE file formats (EXE, DLL, SYS) written in C/C++
PeGuard
Windows PE crypter and packing utility
PTEditor
A small library to modify all page-table levels of all processes from user space for x86_64 and ARMv8.
Quasar
Remote Administration Tool for Windows
theZoo
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
Win10InfoLeaks
Windows kernel information leakage POCs on Windows 10 RS1+
Z0FCourse_ReverseEngineering
Reverse engineering focusing on x64 Windows.