Jonathan Reiter's repositories
RemoteProcessScanner
Enumerate verbose process information on remote endpoints via WMI
Exploit-CVE-2017-6008
Exploits for CVE-2017-6008, a kernel pool buffer overflow leading to privilege escalation.
loki-hidriver
Virtual mouse and keyboard driver for Windows 7 and higher
indexer-plus-plus
Indexer++ official repository
ntfs-cpu-search
From 2011: Quickly search for files in NTFS volumes parsing the Master File Table (MFT). A decent amount of how NTFS and MFT work was painstakingly reverse-engineered since it's undocumented.
TinyObfuscate
TinyObfuscate by Michael Haephrati
ShellcodeStdio
An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.
HideDriver
之前那份是7600的,每次编译搞得好麻烦。更新一个VS2017可以直接编译的。
NewHideDriverEx
Hide Driver By MiProcessLoaderEntry
AntiHook_BitDefender
PoC designed to evade userland-hooking anti-virus.
NoMercy
Open source anti cheat
Pe-Loader-Sample
Proof of concept implementation of in-memory PE Loader based on ReflectiveDLLInjection Technique
CertCheck
Programmatically access a TLS certificate chain in C++ and C#
libelevate
Handle elevation DKOM against ObRegisterCallbacks
PIC_Bindshell
Position Independent Windows Shellcode Written in C
SearchDeleteFile
ntfs
WinREPL
x86 and x64 assembly "read-eval-print loop" for Windows
MBRFilter
Cisco Talos MBR Filter Driver
ntfs-journal-viewer
Utterly simple NTFS Journal dumping utility. Handy when it comes to Computer Forensics and Malware Forensics Ops.
getsystem-offline
Small tool to get a SYSTEM shell
BDArkit-minifilter
just an lite AntiRootkit for interesting
WIN_JELLY
Windows GPU rootkit PoC by Team Jellyfish
rootkit.com
Mirror of users section of rootkit.com
wdk81
Windows Driver Kit 8.1 Samples
WinNT4
Windows NT4 Kernel Source code