Giters
zmkeh

zmkeh

Geek Repo

0

followers

0

following

0

stars

Location:London, UK

Github PK Tool:Github PK Tool

zmkeh's repositories

ADPT

DLL proxying for lazy people

Language:RustLicense:Apache-2.0Stargazers:0Issues:0Issues:0

CVE-2024-21338

Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.

License:GPL-3.0Stargazers:0Issues:0Issues:0

CVE-2024-26229

CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code

Stargazers:0Issues:0Issues:0

DllDemangle

Stargazers:0Issues:0Issues:0

DllMainHijacking

Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode

Stargazers:0Issues:0Issues:0

EDRSilencer

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

Language:CLicense:MITStargazers:0Issues:0Issues:0

FileHide

filter driver to hide files and directories

License:MITStargazers:0Issues:0Issues:0

firewall-bypass

Download data from the internet bypassing the firewall using process injection

Language:CStargazers:0Issues:0Issues:0

fuzzable

Framework for Automating Fuzzable Target Discovery with Static Analysis. Featured at Black Hat Arsenal USA 2022.

Language:PythonLicense:MITStargazers:0Issues:0Issues:0

havoc-PoolParty

Windows Thread Pool Injection Havoc Implementation

Language:PythonStargazers:0Issues:0Issues:0

illusion-rs

Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)

Language:RustLicense:MITStargazers:0Issues:0Issues:0

ioctlance

A tool that is used to hunt vulnerabilities in x64 WDM drivers

License:GPL-3.0Stargazers:0Issues:0Issues:0

lsa-whisperer

Tools for interacting with authentication packages using their individual message protocols

License:MITStargazers:0Issues:0Issues:0

Malware-Knowledge-Graph

Create malware knowledge graphs from analysis reports

Stargazers:0Issues:0Issues:0

merlin

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

Language:GoLicense:GPL-3.0Stargazers:0Issues:0Issues:0

ModuleSpoof

Stargazers:0Issues:0Issues:0

msFuzz

Targeting Windows Kernel Driver Fuzzer

Language:MakefileLicense:MITStargazers:0Issues:0Issues:0

nysm

nysm is a stealth post-exploitation container.

Language:CLicense:Apache-2.0Stargazers:0Issues:0Issues:0

obfuscator

PE bin2bin obfuscator

License:GPL-3.0Stargazers:0Issues:0Issues:0

OSEP_C-code

osep学习笔记 代码

Stargazers:0Issues:0Issues:0

RealBlindingEDR

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

License:MITStargazers:0Issues:0Issues:0

research

General research for Dreadnode

License:MITStargazers:0Issues:0Issues:0

SearchAvailableExe

寻找可利用的白文件

Stargazers:0Issues:0Issues:0

simplewall

Simple tool to configure Windows Filtering Platform (WFP) which can configure network activity on your computer.

License:GPL-3.0Stargazers:0Issues:0Issues:0

TPM-SPOOFER

Language:CStargazers:0Issues:0Issues:0

unKover

PoC Anti-Rootkit to uncover Windows Drivers/Rootkits mapped to Kernel Memory.

Stargazers:0Issues:0Issues:0

VakScript

Spaceglider for League of Legends.

Stargazers:0Issues:0Issues:0

vmprotect-3.5.1

Language:C++Stargazers:0Issues:0Issues:0

windows-rootkit

windows rootkit

Stargazers:0Issues:0Issues:0

winsos-poc

A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.

License:MITStargazers:0Issues:0Issues:0