Skip to content
View ewilded's full-sized avatar
🌴
On vacation
🌴
On vacation
200 followers · 69 following

Achievements

Achievement: Arctic Code Vault ContributorAchievement: Pull SharkAchievement: Starstruckx2

Achievements

Achievement: Arctic Code Vault ContributorAchievement: Pull SharkAchievement: Starstruckx2

Block or report ewilded

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Starred repositories

1377 results for source starred repositories
Clear filter

lkarlslund / defender-acl-blocker

Block Windows Defender by deny ACL

Go 75 9 Updated Jan 12, 2026

ApexPredator-InfoSec / ASSVD_demo

Demo of ASSVD exploitation for blog

C++ 2 Updated Jan 16, 2026

jsacco / ntoskrnlwalker

Resolve offsets, gadgets and symbols from NTKernel

C++ 54 6 Updated Jan 15, 2026

zoicware / RemoveWindowsAI

Force Remove Copilot, Recall and More in Windows 11

PowerShell 9,660 316 Updated Feb 4, 2026

ApexPredator-InfoSec / Apex-Stupidly-Simple-Vulnerable-Driver

ASSVD

C 15 3 Updated Dec 19, 2025

diversenok / DiaSymbolView

PDB file inspection tool

Pascal 127 4 Updated Nov 21, 2025

Hypnoze57 / rpc2efs

Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)

Python 128 11 Updated Oct 23, 2025

warpnet / COM-Fuzzer

Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By following this approach, a security researcher will hopeful…

PowerShell 156 14 Updated Nov 23, 2025

TwoSevenOneT / EDR-Redir

EDR-Redir : a tool used to redirect the EDR's folder to another location.

C++ 222 41 Updated Nov 6, 2025

wavestone-cdt / EDRSandblast

C 1,781 315 Updated Aug 30, 2024

kfallahi / NTLMPasswordChanger

PowerShell tool that shows how to read and write NTLM OWF values via samlib.dll.

PowerShell 72 11 Updated Oct 22, 2025

kfallahi / UnderlayCopy

PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads

PowerShell 238 24 Updated Oct 30, 2025

jsacco / driverbuddyrevolutions

Driver Buddy Revolutions for Ghidra

Python 41 9 Updated Dec 18, 2025

jsacco / ioctlplusplus

IOCTL++ can be used to make DeviceIoControl requests with arbitrary inputs.

34 5 Updated Oct 28, 2025

clearbluejar / pyghidra-mcp

Python Command-Line Ghidra MCP

Python 190 21 Updated Feb 4, 2026

symeonp / Lenovo-CVE-2025-8061

PoC for popping a system shell against the LnvMSRIO.sys driver

C++ 118 12 Updated Oct 6, 2025

philsajdak / decyx

Decyx: AI-powered Ghidra extension for enhanced reverse engineering and binary analysis.

Python 122 4 Updated Nov 26, 2025

philsajdak / DriverBuddyGhidra

DriverBuddyGhidra is a collection of Python scripts for analyzing Windows drivers in Ghidra, such as finding device names and IOCTL handlers

Python 3 Updated Oct 26, 2024

gabriel-sztejnworcel / pipe-intercept

Intercept Windows Named Pipes communication using Burp or similar HTTP proxy tools

Python 280 17 Updated Sep 18, 2025

Kudaes / MFTool

Direct access to NTFS volumes

Rust 293 25 Updated Sep 9, 2025

Xacone / Eneio64-Driver-Exploits

A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W

C++ 115 23 Updated Oct 19, 2025

VoidSec / DriverBuddyReloaded

Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks

Python 411 57 Updated Jul 4, 2025

diommsantos / Gx64Sync

A set of plugins for Ghidra and x64Dbg synchronization. A faster, more flexible ret-sync.

C++ 101 10 Updated Nov 11, 2025

alex-ilgayev / MCPSpy

MCP Monitoring with eBPF

C 497 72 Updated Jan 16, 2026

evilsocket / nyx

Self-contained script for cleaning forensic traces on Linux, macOS, and Windows.

Shell 289 26 Updated Jul 25, 2025

LAC-Japan / Ghidra_AntiDebugSeeker

Automatically identify and extract potential anti-debugging techniques used by malware.

Java 27 1 Updated Nov 20, 2024

warpnet / MS-RPC-Fuzzer

Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By following this approach, a security researcher will hopefully…

C# 324 39 Updated Oct 20, 2025

evilsocket / legba

The fastest and more comprehensive multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷

Rust 1,791 111 Updated Sep 18, 2025

rtecCyberSec / BitlockMove

Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking

C# 432 54 Updated Jun 27, 2025

microsoft / AI-Red-Teaming-Playground-Labs

AI Red Teaming playground labs to run AI Red Teaming trainings including infrastructure.

TypeScript 1,808 275 Updated Jan 23, 2026
Next

Starred topics