Idov31

I'm a security researcher and using this platform to share my projects and research :)

mov eax, [ebp+location]

Pinned Repositories

Cronos
PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.
Language:C541 9 263
FunctionStomping
Shellcode injection technique. Given as C++ header, standalone Rust program or library.
Language:Rust673 18 897
Jormungandr
Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.
Language:C++215 5 026
MrKaplan
MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
Language:PowerShell249 13 144
Nidhogg
Nidhogg is an all-in-one simple to use rootkit.
Language:C++1.6k 32 15255
NidhoggScript
NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
Language:C++45 2 09
rustomware
Simple ransomware written in Rust. Part of the building a rustomware blog post.
Language:YARA30 2 05
Sandman
Sandman is a NTP based backdoor for red team engagements in hardened networks.
Language:C#694 13 297
UdpInspector
Listing UDP connections with remote address without sniffing.
Language:C++28 4 16
Venom
Venom is a library that meant to perform evasive communication using stolen browser socket
Language:C++364 5 055

Idov31's Repositories

Idov31/Nidhogg
Nidhogg is an all-in-one simple to use rootkit.
Language:C++1.6k 32 15255
Idov31/Sandman
Sandman is a NTP based backdoor for red team engagements in hardened networks.
Language:C#694 13 297
Idov31/FunctionStomping
Shellcode injection technique. Given as C++ header, standalone Rust program or library.
Language:Rust673 18 897
Idov31/Cronos
PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.
Language:C541 9 263
Idov31/Venom
Venom is a library that meant to perform evasive communication using stolen browser socket
Language:C++364 5 055
Idov31/MrKaplan
MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
Language:PowerShell249 13 144
Idov31/Jormungandr
Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.
Language:C++215 5 026
Idov31/NidhoggScript
NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
Language:C++45 2 09
Idov31/rustomware
Simple ransomware written in Rust. Part of the building a rustomware blog post.
Language:YARA30 2 05
Idov31/UdpInspector
Listing UDP connections with remote address without sniffing.
Language:C++28 4 16
Idov31/NidhoggCSharpApi
C# API for Nidhogg rootkit
Language:C#147
Idov31/OffensiveRust
Rust Weaponization for Red Team Engagements.
Language:Rust11 1 02
Idov31/hotkey_exploitation
This repository contains the POC and the scanner to catch the Shortcut Hotkey Exploitation method.
Language:Python6 3 00
Idov31/talks-and-publications
Released presentations of my talks + code that used during these talks
Language:C++6 2 01
Idov31/idov31.github.io
Language:TypeScript3 2 01
Idov31/idov31
1 2 0

Idov31

Pinned Repositories

Cronos

FunctionStomping

Jormungandr

MrKaplan

Nidhogg

NidhoggScript

rustomware

Sandman

UdpInspector

Venom

Idov31's Repositories

Idov31/Nidhogg

Idov31/Sandman

Idov31/FunctionStomping

Idov31/Cronos

Idov31/Venom

Idov31/MrKaplan

Idov31/Jormungandr

Idov31/NidhoggScript

Idov31/rustomware

Idov31/UdpInspector

Idov31/NidhoggCSharpApi

Idov31/OffensiveRust

Idov31/hotkey_exploitation

Idov31/talks-and-publications

Idov31/idov31.github.io

Idov31/idov31