Lists (29)
AI & LLM
APT
Asset Discovery
Backdoor & Rookit
Brute Force
C2
Cloud Security
Code Audit
Coding
Defense Evasion
Detection & Response
Discovery & Collection
Domain
Forensic Analysis
ICS & IOT
Infrastructure
Lateral Movement
Misc & Note
OSINT
Persistence
Pishing
Post Exploitation
Privilege Escalation
Proxy & Pivot
Reverse Engineering
Shell
Vulnerability
Web Security
Wireless
Stars
PoC Implementation of a fully dynamic call stack spoofer
Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.
CVE-2020-15368, aka "How to exploit a vulnerable driver"
Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths
Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
CaveCarver - PE backdooring tool which utilizes and automates code cave technique
Moonwalk++: Simple POC Combining StackMoonwalking and Memory Encryption
Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
Remotely Enumerate sessions using undocumented Windows Station APIs