RonGatenio's Stars
winsiderss/systeminformer
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com
basil00/Divert
WinDivert: Windows Packet Divert
ldpreload/BlackLotus
BlackLotus UEFI Windows Bootkit
Idov31/Nidhogg
Nidhogg is an all-in-one simple to use rootkit.
scwuaptx/Pwngdb
gdb for pwn
nccgroup/exploit_mitigations
Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
Hakky54/certificate-ripper
🔐 A CLI tool to extract server certificates
klezVirus/SilentMoonwalk
PoC Implementation of a fully dynamic call stack spoofer
decoder-it/LocalPotato
aperturerobotics/bifrost
Modular networking for Go with pluggable transports, RPC, WebRTC, WebAssembly support.
memN0ps/redlotus-rs
Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
eversinc33/Banshee
Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.
Cracked5pider/LdrLibraryEx
A small x64 library to load dll's into memory.
S1lkys/SharpKiller
Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8
ElliotKillick/LdrLockLiberator
For when DLLMain is the only way
itaymigdal/awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs
SaadAhla/D1rkInject
Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, and reverting back memory protections and original memory state
decoder-it/TokenStealer
alexander-hanel/msdocsviewer
msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
evil-e/sdb-explorer
Tool to view and create Microsoft shim database files (SDB).
tandasat/meow
nyā
Sinclairq/tp-emulator
A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
nothingspecialforu/EvtPsst
EvtPsst
cristeigabriel/re-sysinternals-suite
Code from process of reversing Sysinternals Suite for educational purposes, with videos to associate them
millersartin/Hikvision-Vulnerability-Scanner-POC
POC for hikivison devices based on the following vulnerability https://www.exploit-db.com/exploits/44328
aaaddress1/ntkrnlProtectScan
One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel
Teq2/SEH-Over-VEH
Implementation of a dispatcher for Structured Exceptions inside a Vectored Exception Handler
matterpreter/cpuid
A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
bluefrostsecurity/Windows-Drive-Remapping-EoP
mbikovitsky/layered-shot