itsmehary's repositories
DumpThatLSASS
Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation , it contains Anti-sandbox , if you run it under unperformant Virtual Machine you need to uncomment the code related to it and recompile.
InfoSec-Cheatsheets
InfoSec related cheatsheets
intake-formats
The intake formats supported by SEKOIA.IO
BlackLotus
BlackLotus UEFI Windows Bootkit
Language:C000
blink
Detection engine at scale using Apache Beam, Apache Flink, Kubernetes
Language:GoMIT000
bootlicker
A generic UEFI bootkit used to achieve initial usermode execution. It works with modifications.
Language:C000
Medusa
LD_PRELOAD Rootkit
Language:C000