RonGatenio

RonGatenio's Stars

• reactos/reactos

  A free Windows-compatible Operating System

  Language:C14.9k35501.8k

• davidteather/TikTok-Api

  The Unofficial TikTok API Wrapper In Python

  Language:Python5k84781988

• red-data-tools/YouPlot

  A command line tool that draw plots on the terminal.

  Language:Ruby4.3k212957

• Ascotbe/Kernelhub

  :palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

  Language:C2.9k805669

• SinaKarvandi/Hypervisor-From-Scratch

  Source code of a multiple series of tutorials about the hypervisor. Available at: https://rayanfam.com/tutorials

  Language:C2.2k5520309

• googleprojectzero/sandbox-attacksurface-analysis-tools

  Set of tools to analyze Windows sandboxes for exposed attack surface.

  Language:C#2.1k12136434

• last-byte/PersistenceSniper

  Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte

  Language:PowerShell1.9k4213188

• GoSecure/pyrdp

  RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact

  Language:Python1.6k44284249

• illera88/Ponce

  IDA 2016 plugin contest winner! Symbolic Execution just one-click away!

  Language:C++1.5k7413174

• microsoft/win32-app-isolation

  Tools and documentation for Win32 app isolation

  1.3k203936

• vitoplantamura/BugChecker

  SoftICE-like kernel debugger for Windows 11

  Language:C934388127

• hackerhouse-opensource/iscsicpl_bypassUAC

  UAC bypass for x64 Windows 7 - 11

  Language:C++790172151

• XaFF-XaFF/Black-Angel-Rootkit

  Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.

  Language:C++62393106

• zer0condition/ReverseKit

  x64 Dynamic Reverse Engineering Toolkit

  Language:C++61015295

• diversenok/TokenUniverse

  An advanced tool for working with access tokens and Windows security policy.

  Language:Pascal57119266

• Cybereason/siofra

  Language:Assembly47523186

• zodiacon/EtwExplorer

  View ETW Provider manifest

  Language:C#44216873

• Xyrem/HyperDeceit

  HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate operating system tasks with ease.

  Language:C++3619164

• netero1010/ScheduleRunner

  A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operation

  Language:C#3264040

• NUL0x4C/KnownDllUnhook

  Replace the .txt section of the current loaded modules from \KnownDlls\ to bypass edrs

  Language:C2887037

• Xyrem/Yumekage

  Demo proof of concept for shadow regions, and implementation of HyperDeceit.

  Language:C++2699544

• TimMisiak/WinDbgCookbook

  This is a repo for small, useful scripts and extensions

  Language:JavaScript24114022

• WithSecureLabs/ppid-spoofing

  Scripts for performing and detecting parent PID spoofing

  Language:PowerShell1393020

• hackerhouse-opensource/ColorDataProxyUACBypass

  Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC bypass. Win 7 & up.

  Language:C1355224

• 3gstudent/ntfsDump

  Use to copy a file from an NTFS partitioned volume by reading the raw volume and parsing the NTFS structures.

  Language:C++1113021

• jdu2600/Etw-SyscallMonitor

  Monitors ETW for security relevant syscalls maintaining the set called by each unique process

  Language:C#49105

• GonRappaport/GonDbg

  Language:C++133

• thiyagab/sboss

  A sample to freely host a telegram bot as cloud functions and integrated with firebase firestore

  Language:Python7301

• mbikovitsky/Sebastian

  Safe Exam Browser VM check bypass

  Language:C2201

• mbikovitsky/spi

  Serial Process Interface

  Language:C++120