Marcos Oviedo's starred repositories
claude-engineer
Claude Engineer is an interactive command-line interface (CLI) that leverages the power of Anthropic's Claude-3.5-Sonnet model to assist with software development tasks. This tool combines the capabilities of a large language model with practical file system operations and web search functionality.
defcon_27_windbg_workshop
DEFCON 27 workshop - Modern Debugging with WinDbg Preview
No-Consolation
A BOF that runs unmanaged PEs inline
process-cloning
The Definitive Guide To Process Cloning on Windows
Deviare-InProc
Deviare In Process Instrumentation Engine
PassTheChallenge
Recovering NTLM hashes from Credential Guard
awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs
ImmoralFiber
Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) PhantomThread (An evolved callstack-masking implementation)
CreateRemoteThreadPlus
CreateRemoteThread: how to pass multiple parameters to the remote thread function without shellcode.
WindowsInternals
Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
offensive-rpc
Offensive RPC PoC
interactive-terminal
An Interactive terminal using Xterm.JS and Node.JS
ETWListicle
List the ETW provider(s) in the registration table of a process.
iot-core-azure-dm-client
Device Management Client for Windows IoT Core
azure-client-tools
Azure Client Tools
InternalWinMD
haha winmd machine go brrrr
etw-patching-for-dummies
ETW patching for dummies