Gabriel Landau's repositories
EDRSandblast-GodFault
EDRSandblast-GodFault
ShadowStackWalk
Finding Truth in the Shadows
ExtendedAttributeIpecac
Kernel EA Ipecac
ANGRYORCHARD
A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.
OffensivePH
OffensivePH - use old Process Hacker driver to bypass several user-mode access controls
AntimalwareBlight
Execute PowerShell code at the antimalware-light protection level.
ctypes-windows-sdk
Ctypes port of Windows SDK (only small subset)
CVE-2022-21894
baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability
dellicious
Enabled / Disable LSA Protection via BYOVD
grimreaper
A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
KExecDD
Admin to Kernel code execution using the KSecDD driver
Silhouette
Keep it secret, keep it safe
systeminformer
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com
WinObjEx64
Windows Object Explorer 64-bit