Pinned Repositories
AsIO-Exploit
AsIO3.sys auth bypass and local privesc proof-of-concept
BadlionLogger
kernel driver used to monitor the activity of BadlionAnticheat.sys by patching its IAT
GD-Editor-Leak
reverse engineered structures and editor code needed to reimplement the editor in the 2019 Geometry Dash 2.2 leaks
microsoft-warbird
Reimplementation of Microsoft's Warbird obuscator
photon
Photon is a hooking engine for ARM
promon-reversal
Analysis and proof-of-concept bypass of Promon SHIELD's Android application protection
VMP3-Disasm
Experimental disassembler for x86 binaries virtualized by VMProtect 3
warbird-hook
Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
warbird-obfuscator
Integration of Microsoft Warbird with the MSVC compiler
windows-software-policy
Research on obfuscated licensing APIs / CLIP service in the Windows kernel
KiFilterFiberContext's Repositories
KiFilterFiberContext/warbird-hook
Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
KiFilterFiberContext/promon-reversal
Analysis and proof-of-concept bypass of Promon SHIELD's Android application protection
KiFilterFiberContext/VMP3-Disasm
Experimental disassembler for x86 binaries virtualized by VMProtect 3
KiFilterFiberContext/microsoft-warbird
Reimplementation of Microsoft's Warbird obuscator
KiFilterFiberContext/warbird-obfuscator
Integration of Microsoft Warbird with the MSVC compiler
KiFilterFiberContext/windows-software-policy
Research on obfuscated licensing APIs / CLIP service in the Windows kernel
KiFilterFiberContext/BadlionLogger
kernel driver used to monitor the activity of BadlionAnticheat.sys by patching its IAT
KiFilterFiberContext/GD-Editor-Leak
reverse engineered structures and editor code needed to reimplement the editor in the 2019 Geometry Dash 2.2 leaks
KiFilterFiberContext/photon
Photon is a hooking engine for ARM
KiFilterFiberContext/AsIO-Exploit
AsIO3.sys auth bypass and local privesc proof-of-concept
KiFilterFiberContext/StudentVue-rs
Unofficial Rust API for StudentVUE
KiFilterFiberContext/VMProtect-Source
Source of VMProtect (NOT OFFICIALLY)
KiFilterFiberContext/x86-Code-Virtualizer
x86 Binary Code Virtualization Tool
KiFilterFiberContext/ghidra-gdt
Ghidra script for generating Ghidra Data Type (GDT) archives containing type information
KiFilterFiberContext/psi-secure-admin-unlock
Revealing an undocumented admin control panel in PSI Secure Browser
KiFilterFiberContext/warbirdvm
An analysis of the Warbird virtual-machine protection for the CI!g_pStore
KiFilterFiberContext/NtTuna
KiFilterFiberContext/ApplySig
Apply IDA FLIRT signatures for Ghidra
KiFilterFiberContext/dotnet-coreclr
CoreCLR is the runtime for .NET Core. It includes the garbage collector, JIT compiler, primitive data types and low-level classes.
KiFilterFiberContext/gddocs
📋 Documentation for Geometry Dash.
KiFilterFiberContext/ghidra
Ghidra is a software reverse engineering (SRE) framework
KiFilterFiberContext/HEVD-practice
short personal writeups for Hacksys Extreme Vulnerable Driver (HEVD)
KiFilterFiberContext/machkit
Mach library wrapper written in C++
KiFilterFiberContext/phnt
Native API header files for the Process Hacker project.
KiFilterFiberContext/pwintools
Basic pwntools for Windows
KiFilterFiberContext/SimpleMemoryWrapper
Simple wrapper for the Windows API, its main objective is to document my learning
KiFilterFiberContext/VMPROTECT
Obfuscation method using virtual machine.