Idov31

I'm a security researcher and using this platform to share my projects and research :)

mov eax, [ebp+location]

Pinned Repositories

Cronos
PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.
Language:C571 10 262
FunctionStomping
Shellcode injection technique. Given as C++ header, standalone Rust program or library.
Language:Rust690 18 894
Jormungandr
Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.
Language:C++226 7 025
MrKaplan
MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
Language:PowerShell256 13 148
Nidhogg
Nidhogg is an all-in-one simple to use windows kernel rootkit.
Language:C++1.9k 36 16278
NidhoggScript
NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
Language:C++45 3 09
rustomware
Simple ransomware written in Rust. Part of the building a rustomware blog post.
Language:YARA32 3 05
Sandman
Sandman is a NTP based backdoor for red team engagements in hardened networks.
Language:C#781 14 2107
UdpInspector
Listing UDP connections with remote address without sniffing.
Language:C++30 6 17
Venom
Venom is a library that meant to perform evasive communication using stolen browser socket
Language:C++375 7 056

Idov31's Repositories

Idov31/Nidhogg
Nidhogg is an all-in-one simple to use windows kernel rootkit.
Language:C++1.9k 36 16278
Idov31/Sandman
Sandman is a NTP based backdoor for red team engagements in hardened networks.
Language:C#781 14 2107
Idov31/FunctionStomping
Shellcode injection technique. Given as C++ header, standalone Rust program or library.
Language:Rust690 18 894
Idov31/Cronos
PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.
Language:C571 10 262
Idov31/Venom
Venom is a library that meant to perform evasive communication using stolen browser socket
Language:C++375 7 056
Idov31/MrKaplan
MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
Language:PowerShell256 13 148
Idov31/Jormungandr
Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.
Language:C++226 7 025
Idov31/NidhoggScript
NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
Language:C++45 3 09
Idov31/rustomware
Simple ransomware written in Rust. Part of the building a rustomware blog post.
Language:YARA32 3 05
Idov31/UdpInspector
Listing UDP connections with remote address without sniffing.
Language:C++30 6 17
Idov31/NidhoggCSharpApi
C# API for Nidhogg rootkit
Language:C#16 1 07
Idov31/talks-and-publications
Released presentations of my talks + code that used during these talks
Language:C++13 2 04
Idov31/OffensiveRust
Rust Weaponization for Red Team Engagements.
Language:Rust11 1 03
Idov31/hotkey_exploitation
This repository contains the POC and the scanner to catch the Shortcut Hotkey Exploitation method.
Language:Python6 2 00
Idov31/idov31.github.io
Language:TypeScript3 2 01
Idov31/idov31
1 3 0

Idov31

Pinned Repositories

Cronos

FunctionStomping

Jormungandr

MrKaplan

Nidhogg

NidhoggScript

rustomware

Sandman

UdpInspector

Venom

Idov31's Repositories

Idov31/Nidhogg

Idov31/Sandman

Idov31/FunctionStomping

Idov31/Cronos

Idov31/Venom

Idov31/MrKaplan

Idov31/Jormungandr

Idov31/NidhoggScript

Idov31/rustomware

Idov31/UdpInspector

Idov31/NidhoggCSharpApi

Idov31/talks-and-publications

Idov31/OffensiveRust

Idov31/hotkey_exploitation

Idov31/idov31.github.io

Idov31/idov31