trickster0's repositories
TartarusGate
TartarusGate, Bypassing EDRs
LdrLoadDll-Unhooking
LdrLoadDll Unhooking
EDR_Detector
EDR Detector that can find what kind of endpoint solution is being used according to drivers in the system.
CReadMemory
Read Memory without ReadProcessMemory for Current Process
Elastic_Panel_AutoInstall
Spawn Up quickly Elastic EDR Panel
BlindBrowse
Android BlindBrowser : Real Time Navigation on Android devices with no display.
MicrosoftWontFixList
A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))
PPID-Spoofing
POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritting ntdll:LdrInitializeThunk with shellcode.
AlanFramework
A C2 post-exploitation framework
ANGRYORCHARD
A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.
Asus-DOS
Denial of Service for Asus Precision TouchPad 11.0.0.25 - DoS/Privesc
BFS-Ekoparty-2019-challenge
Exploit for the "BFS Ekoparty 2019 Exploitation Challenge"
com-research
Research into COM
DarkPulsar
EQGRP: Replicating DarkPulsar, an DLL capable of hooking Security Package Method Tables on the Heap!
DetectWindowsCopyOnWriteForAPI
Enumerate various traits from Windows processes as an aid to threat hunting
InfinityHook
Hook system calls, context switches, page faults and more.
netntlm
A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP
rc4
Optimized software implementation in C of the RC4 encryption algorithm.
shadow-workers
Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
trickster0.github.io
A minimal, sidebar, responsive web design Jekyll theme that focuses on text presentation.