Pinned Repositories
ALPCLogger
Log ALPC activity
HyperPlatform
Intel VT-x based hypervisor aiming to provide a thin platform for research on Windows.
ioctlbf
Automatically exported from code.google.com/p/ioctlbf
ioctlfuzzer
Automatically exported from code.google.com/p/ioctlfuzzer
N3mes1s's Repositories
N3mes1s/ALPCLogger
Log ALPC activity
N3mes1s/IR-Tools
IR-Tools - PowerShell tools for IR
N3mes1s/amsiscanner
A C/C++ implementation of Microsoft's Antimalware Scan Interface
N3mes1s/apted
Python APTED algorithm for the Tree Edit Distance
N3mes1s/apted-1
APTED algorithm for the Tree Edit Distance
N3mes1s/at-ps
Adversary Tactics - PowerShell Training
N3mes1s/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
N3mes1s/awesome-yara
A curated list of awesome YARA rules, tools, and people.
N3mes1s/capted
C++ Header Library port of APTED algorithm for computing Tree Edit Distance
N3mes1s/CVE-2020-0796
CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost
N3mes1s/experiments
Expriments
N3mes1s/findfaces
C++OpenCV demo app with a rest endpoint for use in containers
N3mes1s/haxm
Intel® Hardware Accelerated Execution Manager (Intel® HAXM)
N3mes1s/KDU
Kernel Driver Utility
N3mes1s/kHypervisor
kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x
N3mes1s/lib-tdt
N3mes1s/openai-api-rs
OpenAI API client library for Rust (unofficial)
N3mes1s/ppdump-public
Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDump() Shellcode
N3mes1s/ransomware_notes
An archive of ransomware notes past and present
N3mes1s/raw-socket-sniffer
Packet capture on Windows without a kernel driver
N3mes1s/redox
Redox: A Rust Operating System
N3mes1s/Reflective-Driver-Loader
N3mes1s/RemotePSpy
RemotePSpy provides live monitoring of remote PowerShell sessions, which is particularly useful for older (pre-5.0) versions of PowerShell which do not have comprehensive logging facilities built in.
N3mes1s/RpcView
N3mes1s/Sandboxie
Sandboxie - Open Source
N3mes1s/Simpleator
Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".
N3mes1s/TheBigPromptLibrary
A collection of prompts, system prompts and LLM instructions
N3mes1s/vcpkg
C++ Library Manager for Windows, Linux, and MacOS
N3mes1s/wasi-fs-access
This is a demo shell powered by WebAssembly, WASI, Asyncify and File System Access API.
N3mes1s/WinAltSyscallHandler
Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999