whokilleddb's repositories
ETWListicle
List the ETW provider(s) in the registration table of a process.
A-Study-in-Obfuscation
A Study in Obfuscation: Analyzing the effect of various techniques to bypass AV engines
injection-for-dummies
A collection of PoCs for different injection techniques on Windows!
HelloWorldDriver
Get started with writing your first ever Windows Driver
BoosterDriver
A step-by-step walkthrough of how to write a Client and a Driver to communicate with each other and boost the priority of a thread.
ProcReveal
A kernel driver to get a Handle to virtually *every* process
CVE-2022-26134-Confluence-RCE
Exploit for CVE-2022-26134: Confluence Pre-Auth Remote Code Execution via OGNL Injection
build-a-kernel-using-github-actions
Can we compile a Linux Kernel using github actions?
functions-for-red-teamers
A collection of useful (mostly Windows) C functions for Red-Teamers. The different types of function include.
etw-patching-for-dummies
ETW patching for dummies
amsi-patching-for-dummies
Learn about AMSI patching with a real example!
dlink-dir-819-dos
Unauthenticated Denial of Service in DLink consumer DIR 819 A1 router
exec-assembly
Execute .NET assemblies in Memory!
load-my-clr
Run managed code from unmanaged process!
whokilleddb.github.io
My Portfolio Website
Certify
Active Directory certificate abuse.
jsonp-poc-app
A Demo application to demonstrate JSONP vulnerability
Network-Infrastructure
Networking and infrastructure scripts
wayback
A command line tool to scrape targets from the Wayback Machine
what-is-my-product-key
Find your Windows OEM Product Key!
whokilleddb
Hello World 👋