@ith4cker's repositories
Malfunction
Malware Analysis Tool using Function Level Fuzzy Hashing
kicomav
KicomAV is an open source (GPL v2) antivirus engine designed for detecting malware and disinfecting it.
MBE
Course materials for Modern Binary Exploitation by RPISEC
tools
security and hacking tools, exploits, proof of concepts, shellcodes, scripts
Astor
A Practical Parallel Antivirus Engine
Trebuchet
MS15-076 Privilege Escalation
MemoryPatchDetector
Detects code differentials between executables in disk and the corresponding processes/modules in memory
HexRaysCodeXplorer
Hex-Rays Decompiler plugin for better code navigation
DbgFlashVul
DbgFlashVul
harpoon
Lightweight runtime hooking library for OS X.
HitCon-2015-spartan-0day-exploit
HitCon 2015 spartan 0day & exploit
uacscript
Windows 7 UAC Bypass Vulnerability in the Windows Script Host
MEMSCAN
A memory scanning tool which uses mach_vm* to either dump memory or look for a specific sequence of bytes.
usbtracker
Quick & dirty coded incident response and forensics python script to track USB devices events and artifacts in a Windows OS (Vista and later).
sinkhole
The memory sinkhole
PowerLoaderEx
PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
WMI_Backdoor
A PoC WMI backdoor presented at Black Hat 2015
tracethreat-nrml
Near Realtime Machine Learning for process instruction code of malware on repository.
MSM8974_exploit
Full TrustZone exploit for MSM8974
Honors-2015
Honors Project for implementing and studying paper Vulnerability Extrapolation of C code using Machine Learning
Win64-Rovnix-VBR-Bootkit
Win64/Rovnix - Volume Boot Record Bootkit
vector-exploit
Exploit repository
scout-win
Scout backdoor for Windows
immunity_pycommands
Immunity Debugger PyCommands
APTnotes
Various public documents, whitepapers and articles about APT campaigns
Microsoft-Malware-Classification-Kaggle
This contains the IPython notebooks describing Machine Learning algorithms I had used for the Kaggle contest "Microsoft Malware Classification Challenge".
Routeh
Routeh - vulnerability routers on page (password.cgi)