Pinned Repositories
build-asuswrt-merlin
Helpers to build RMerl/asuswrt-merlin without much extra typing
msvc-undoc
Undocumented MSVC
Nidhogg
Nidhogg is an all-in-one simple to use rootkit for red teams.
ntobjx
Replacement for WinObj
NtPebTeb
Little tool and (header-only lib) to investigate Windows Internals. Shout out to @zodiacon. No pull requests (this is actually a mirrored Mercurial repo).
runassys
Using the debug privilege to elevate from BUILTIN\Administrators to NT AUTHORITY\SYSTEM in the same console window
scripts
Scripts I wrote at some point to help me with some task. There are a few bits and pieces from others, though. So look out for copyright headers in the files. No pull requests (this is actually a mirrored Mercurial repo).
simpleini
Cross-platform C++ library providing a simple API to read and write INI-style configuration files
vs-project-zoo
Visual Studio project zoo (2005 through 2022)
assarbad's Repositories
assarbad/ntobjx
Replacement for WinObj
assarbad/idacfg
My IDA configuration
assarbad/lsads
C++ class to deal with Alternate Data Streams (Win32) plus a little tool based on it. No pull requests (this is actually a mirrored Mercurial repo).
assarbad/archivy
Archivy is a self-hosted knowledge repository that allows you to safely preserve useful content that contributes to your own personal, searchable and extendable wiki.
assarbad/runassys
Using the debug privilege to elevate from BUILTIN\Administrators to NT AUTHORITY\SYSTEM in the same console window
assarbad/stripcert
Small utility to strip the signature off of a PE binary
assarbad/vs-project-zoo
Visual Studio project zoo (2005 through 2022)
assarbad/lookfs
C++ class to handle reparse points (symlinks, junctions, volume mount points - Win32) plus a little tool based on that class. No pull requests (this is actually a mirrored Mercurial repo).
assarbad/armory-drive
F-Secure Armory Drive - USB encrypted drive with mobile unlock over BLE
assarbad/CPPCoverage
Visual Studio Extension for measuring C++ Code Coverage and profiling data
assarbad/dpapi-research
Learning about the DPAPI
assarbad/looklink
C++ class to handle reparse points (symlinks, junctions, volume mount points - Win32) plus a little tool based on that class. No pull requests (this is actually a mirrored Mercurial repo).
assarbad/matrix
Matrix Screensaver for Windows
assarbad/msbuild-batching
Testing MSBuild batching and issues with multiple files having the same base name and conflicting as object files (plus some sccache hackery)
assarbad/msvc-linker
Behavioral analysis of link.exe
assarbad/ntfs
An implementation of the NTFS filesystem in a Rust crate, usable from firmware level up to user-mode.
assarbad/objconv
A utility for cross-platform development of function libraries, for converting and modifying object files and for executable files for all x86 and x86-64 platforms.dumping and disassembling object and
assarbad/OffensiveRust
Rust Weaponization for Red Team Engagements.
assarbad/PR0CESS
some gadgets about windows process and ready to use :)
assarbad/scylla_wrapper_dll
This is a wrapper around Scylla. It exports functions for IAT fixing, dumping and PE rebuilding.
assarbad/simpleopt
Cross-platform command line processing and file globbing for C++
assarbad/SusanRTTI
Another RTTI Parsing IDA plugin
assarbad/TitanEngine
TitanEngine Community Edition. Debug engine used by x64dbg.
assarbad/usermanager
XP Usermanager - übersichtliche Benutzerkontenverwaltung für Windows 2000 und höher
assarbad/VMProtect-Source
Source of VMProtect (NOT OFFICIALLY)
assarbad/warbird-obfuscator
Integration of Microsoft Warbird with the MSVC compiler
assarbad/WiFiDuck
Wireless keystroke injection attack platform
assarbad/winappdbg
WinAppDbg Debugger
assarbad/windows-api-function-cheatsheets
A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization, interprocess communication, Unicode string manipulation, error handling, Winsock networking operations, and registry operations.
assarbad/winspy
WinSpy++