cr-0w

cr-0w's Stars

• hasherezade/malware_training_vol1

  Materials for Windows Malware Analysis training (volume 1)

  Language:Assembly1.9k186

• hasherezade/process_doppelganging

  My implementation of enSilo's Process Doppelganging (PE injection technique)

  Language:C583117

• forrest-orr/ExploitDev

  Various tools, PoCs and experiments related to my blog at https://www.forrest-orr.net/

  Language:Assembly3612

• yardenshafir/IoRingReadWritePrimitive

  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2

  Language:C++22144

• riskydissonance/SyscallsExample

  Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.

  Language:Assembly7318

• forrest-orr/phantom-dll-hollower-poc

  Phantom DLL hollowing PoC

  Language:C++35169

• mgeeky/ShellcodeFluctuation

  An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting its contents

  Language:C++960158

• mgeeky/ThreadStackSpoofer

  Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.

  Language:C++1.1k177

• janoglezcampos/FindItByCalls

  Hacky code for extracting calls in DLLs by function

  Language:Python143

• grassmunk/Chicago95

  A rendition of everyone's favorite 1995 Microsoft operating system for Linux.

  Language:HTML4.6k158

• kahlon81/Process-Injection-Direct-Syscall

  Classic Process Injection but with direct syscalls

  Language:C93

• BlackArch/blackarch

  An ArchLinux based distribution for penetration testers and security researchers.

  Language:Shell2.9k581

• elddy/Windows-NTAPI-Injector

  Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses

  Language:C++4013

• Maldev-Academy/EntropyReducer

  Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists

  Language:C39558

• OpenSecurityResearch/dllinjector

  dll injection tool that implements various methods

  Language:C++489113

• hzphreak/VMInjector

  DLL Injection tool to unlock guest VMs

  Language:C++23183

• TCM-Course-Resources/Open-Source-Intellingence-Resources

  Compilation of Resources from TCM's OSINT Course

  Language:Shell916253

• Maldev-Academy/HellHall

  Performing Indirect Clean Syscalls

  Language:C48867

• NUL0x4C/AtomLdr

  A DLL loader with advanced evasive features

  Language:C67890

• 0x00Check/ExploitLeakedHandle

  Identify and exploit leaked handles for local privilege escalation.

  Language:C++10615

• x0reaxeax/lambda

  it really is a lambda

  Language:C51

• SecuraBV/Timeroast

  Timeroasting scripts by Tom Tervoort

  Language:Python24823

• x0reaxeax/Fetch-n-Exec

  An x64 binary executing code that's not inside of it.

  Language:C101

• x0reaxeax/exec-prot-bypass

  Bypassing Linux Executable Space Protection using 20+ years old tools (CVE-2022-25265).

  Language:C102

• x0reaxeax/rwlazer64

  Win64 UEFI Driver-based tool for unrestricted memory R/W

  Language:C276

• Idov31/Cronos

  PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.

  Language:C56663

• the-xentropy/xencrypt

  A PowerShell script anti-virus evasion tool

  Language:PowerShell1.1k225

• j00ru/windows-syscalls

  Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)

  Language:HTML2.2k333

• dafthack/MailSniper

  MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

  Language:PowerShell3k577

• dafthack/MFASweep

  A tool for checking if MFA is enabled on multiple Microsoft Services

  Language:PowerShell1.4k190