Kudayasu

Kudayasu's Stars

• 3dnow/NtCreateLowBoxToken

  A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering

  Language:C337

• momo5502/emulator

  🪅 Windows User Space Emulator

  Language:C++76349

• Kudaes/Eclipse

  Activation Context Hijack

  Language:Rust14017

• hfiref0x/WinDepends

  Windows Dependencies

  Language:C#49611

• googleprojectzero/Hyntrospect

  Language:PowerShell18322

• can1357/selene

  Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!

  Language:C++31633

• Dynatrace/superdump

  A service for automated crash-dump analysis

  Language:C#52076

• AaronMargosis/Aaron-Margosis-SysNocturnals-Tools

  A set of troubleshooting, diagnostic, and information utilities for Windows

  533

• kwsimons/AnimaSSH

  AnimaSSH installs an OpenSSH SSH/SFTP server on a retail Xbox that has been compromised via Collateral Damage, allowing for arbitrary code execution in the shell via Silverton

  Language:C#91

• namazso/dll-universal-patcher

  A universal binary patching dll.

  Language:C++8413

• Droppers/SingleFileExtractor

  A tool for extracting contents (assemblies, configuration, etc.) from a single-file application to a directory, suitable for purposes like malware analysis.

  Language:C#10718

• zeze-zeze/NamedPipeMaster

  a tool used to analyze and monitor in named pipes

  Language:C++15314

• yardenshafir/SymlinkCallback

  A driver that hooks C: volume using symbolic link callback to track all FS access to the volume

  Language:C++10337

• pulsar-edit/pulsar

  A Community-led Hyper-Hackable Text Editor

  Language:JavaScript3.4k143

• xboxoneresearch/LuaFFI-CE

  Code execution via LUA in EraOS/GameOS

  Language:Lua342

• klezVirus/DriverJack

  Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths

  Language:C++32048

• zer0condition/ZeroHVCI

  Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling without admin permissions or kernel drivers.

  Language:C19037

• PN-Tester/AppxPotato

  AppX RPC Local Privilege Escalation - Windows 10/11

  Language:C#495

• thesecretclub/SandboxBootkit

  Bootkit for Windows Sandbox to disable DSE/PatchGuard.

  Language:C++26839

• ufrisk/MemProcFS

  MemProcFS

  Language:C3.3k408

• TitleOS/mkdocize

  An agnostic DockerImage for building, hosting, and serving a mkdocs git repo. (With Push updates!)

  Language:Python1

• cyberark/PipeViewer

  A tool that shows detailed information about named pipes in Windows

  Language:C#57950

• gtworek/PSBits

  Simple (relatively) things allowing you to dig a bit deeper than usual.

  Language:C3.3k535

• calamity-inc/gta-v-joaat-hash-db

  Language:C++166

• dexyfex/CodeWalker

  Language:C#508212

• tyranid/oleviewdotnet

  A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container

  Language:C#1.2k187

• hfiref0x/WinObjEx64

  Windows Object Explorer 64-bit

  Language:C1.7k294

• ladislav-zezula/FileTest

  Source code for File Test - Interactive File System Test Tool

  Language:C++26979

• TitleOS/QuantumTunnel

  A Xbox One/Series Flash Dumper for SystemOS created in C#.

  Language:C#427

• MustardChef/WSABuilds

  Run Windows Subsystem For Android on your Windows 10 and Windows 11 PC using prebuilt binaries with Google Play Store (MindTheGapps) and/or Magisk or KernelSU (root solutions) built in.

  Language:Python8.7k1.5k