TaxMachine's starred repositories
nim-syscall
Raw system calls for Nim
regreSSHion
CVE-2024-6387 (regreSSHion) Exploit (PoC), a vulnerability in OpenSSH's server (sshd) on glibc-based Linux systems.
windows-kernel-trojan
A windows kernel mode driver that spoofs serial numbers when mapped and executes a malicious payload (FULLY from kernel!!!)
Prince-Ransomware
Go ransomware utilising ChaCha20 and ECIES encryption.
deoptimizer
Evasion by machine code de-optimization.
Useful-COM-WMI
Some Nim and Powershell snippets for (ab)using COM and WMI for various useful purposes.
Doge-TypeUnhook
type ntdll.dll for dll unhooking
ThunderKitty
🔑 Open source stealer written in Go, all logs will be sent to Telegram bot.
Epicgames-Xal
Reversed 'Xal' value for epicgames.com
Handle-Ripper
Windows handle hijacker
hcaptcha-reverse
hCaptcha hsw reverse engineered
EDR-XDR-AV-Killer
Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
CallStackMasker
A PoC implementation for dynamically masking call stacks with timers.
enderdragon
Ghidra in Minecraft
no-defender
A slightly more fun way to disable windows defender + firewall. (through the WSC api)
execve-asm
Executing a command with ASM
DiscordIPC
Connect locally to the Discord client using IPC for a subset of RPC features like Rich Presence and Activity Join/Spectate
imgui-console
Console Widget for Dear ImGui
CLR-Injection
Use CLR to inject all the .NET apps
github-stats-transparent
Automatically generate summary GitHub statistics images for your profile using Actions, no server required