Pinned Repositories
artifacts-kit
Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.
DoubleStar
A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques
ExploitDev
Various tools, PoCs and experiments related to my blog at https://www.forrest-orr.net/
Exploits
A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.
FileHostTests
Gallery
moneta
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
phantom-dll-hollower-poc
Phantom DLL hollowing PoC
RPCDump
WizardOpium
Google Chrome Use After Free
forrest-orr's Repositories
forrest-orr/moneta
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
forrest-orr/phantom-dll-hollower-poc
Phantom DLL hollowing PoC
forrest-orr/artifacts-kit
Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.
forrest-orr/DoubleStar
A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques
forrest-orr/Exploits
A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.
forrest-orr/WizardOpium
Google Chrome Use After Free
forrest-orr/ExploitDev
Various tools, PoCs and experiments related to my blog at https://www.forrest-orr.net/
forrest-orr/Gallery
forrest-orr/FileHostTests
forrest-orr/RPCDump