TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

A little tool to play with Windows security

The pattern matching swiss knife

windows-kernel-exploits Windows平台提权漏洞集合

Direct Memory Access (DMA) Attack Software

Defeating Windows User Account Control

This repository contains several applications, demonstrating the Meltdown bug.

Simple (relatively) things allowing you to dig a bit deeper than usual.

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

A self-contained cryptographic library for Python

TestDisk & PhotoRec

Abusing impersonation privileges through the "Printer Bug"

🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc

Unreal Engine SDK Generator

Windows Event Log Killer

Interactive CTF Exploration Tool

proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

Zero-Day Code Injection and Persistence Technique

Driver loader for bypassing Windows x64 Driver Signature Enforcement

Windows x64 Driver Signature Enforcement Overrider

Cheat that uses a driver instead WinAPI for Reading / Writing memory.

The Python interface for YARA

Driver that uses network sockets to communicate with client and read/ write protected process memory.

A collection of source code for various botnets.

An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security

An attempt at Process Doppelgänging

BlackNurse attack PoC

UAC Bypass with mmc via alpc

A session-0 capable dll injection utility

Configure SPI flash write protection.