ackroute

pdrv

access

Access without a real handle

AQUARMOURY

My musings in C and offensive tooling

attckr

⚔️MITRE ATT&CK Machinations in R

ByePg

Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI

CallObfuscator

Obfuscate specific windows apis with different apis

CFB

Canadian Furious Beaver is a tool for hijacking IRPs handler in Windows drivers, and facilitating the process of analyzing Windows drivers for vulnerabilities

cryptoGraph

A research project to explore NFT transactions using graph analytics

crystalaep

Crystal Anti-Exploit Protection 2012

FOLIAGE

Experiment on reproducing Obfuscate & Sleep

gbhv

Simple x86-64 VT-x Hypervisor with EPT Hooking

HookLib

The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support

Hunt-Sleeping-Beacons

Aims to identify sleeping beacons

IOCTLDump

kdmapper

driver manual mapper

KDU

Kernel Driver Utility

Kernel-Bridge

Windows kernel hacking framework, driver template, hypervisor and API written on C++

KExecDD

Admin to Kernel code execution using the KSecDD driver

MineSweeper

Windows user-land hooks manipulation tool.

Mitigate

Machine Interrogation To Identify Gaps & Techniques for Execution

mitre-attack-mapper

Classification model to map Splunk logs to MITRE ATT&CK States

phantom-dll-hollower-poc

Phantom DLL hollowing PoC

rcATT

A python app to predict Att&ck tactics and techniques from cyber threat reports

s6_pcie_microblaze

PCI Express DIY hacking toolkit for Xilinx SP605

Sharp-Suite

My musings with C#

synapse

Synapse intelligence analysis platform

sysmon-config

Sysmon configuration file template with default high-quality event tracing

WEASEL

DNS covert channel implant for Red Teams.

wpp

Intercepting DeviceControl via WPP

WubbabooMark

Debugger Anti-Detection Benchmark