hfiref0x

Pinned Repositories

DSEFix
Windows x64 Driver Signature Enforcement Overrider
Language:C719 44 13249
KDU
Kernel Driver Utility
Language:C2k 68 69422
LightFTP
Small x86-32/x64 FTP Server
Language:C236 19 2684
NtCall64
Windows NT x64 syscall fuzzer
Language:C590 22 1104
SyscallTables
Windows NT Syscall tables
Language:C1.2k 54 2238
TDL
Driver loader for bypassing Windows x64 Driver Signature Enforcement
Language:C1k 78 27332
UACME
Defeating Windows User Account Control
Language:C6.4k 277 1191.3k
UPGDSED
Universal PatchGuard and Driver Signature Enforcement Disable
Language:C830 68 32259
VBoxHardenedLoader
VirtualBox VM detection mitigation loader
Language:C919 73 93278
WinObjEx64
Windows Object Explorer 64-bit
Language:C1.6k 65 22294

hfiref0x's Repositories

hfiref0x/UACME
Defeating Windows User Account Control
Language:C6.4k 277 1191.3k
hfiref0x/KDU
Kernel Driver Utility
Language:C2k 68 69422
hfiref0x/WinObjEx64
Windows Object Explorer 64-bit
Language:C1.6k 65 22294
hfiref0x/SyscallTables
Windows NT Syscall tables
Language:C1.2k 54 2238
hfiref0x/TDL
Driver loader for bypassing Windows x64 Driver Signature Enforcement
Language:C1k 78 27332
hfiref0x/VBoxHardenedLoader
VirtualBox VM detection mitigation loader
Language:C919 73 93278
hfiref0x/UPGDSED
Universal PatchGuard and Driver Signature Enforcement Disable
Language:C830 68 32259
hfiref0x/DSEFix
Windows x64 Driver Signature Enforcement Overrider
Language:C719 44 13249
hfiref0x/NtCall64
Windows NT x64 syscall fuzzer
Language:C590 22 1104
hfiref0x/WDExtract
Extract Windows Defender database from vdm files and unpack it
Language:C425 14 461
hfiref0x/WubbabooMark
Debugger Anti-Detection Benchmark
Language:C291 7 538
hfiref0x/CVE-2015-1701
Win32k LPE vulnerability used in APT attack
Language:C286 34 2175
hfiref0x/LightFTP
Small x86-32/x64 FTP Server
Language:C236 19 2684
hfiref0x/VMDE
Source from VMDE paper, adapted to 2015
Language:C176 20 163
hfiref0x/ZeroAccess
ZeroAccess v3 toolkit
Language:C161 20 0102
hfiref0x/SXSEXP
Expand compressed files from WinSxS folder
Language:C146 10 639
hfiref0x/AuthHashCalc
Authenticode Hash Calculator for PE32/PE32+ files
Language:C107 7 630
hfiref0x/Stryker
Multi-purpose proof-of-concept tool based on CPU-Z CVE-2017-15303
Language:C107 11 061
hfiref0x/MpEnum
Enumerate Windows Defender threat families and dump their names according category
Language:C86 6 226
hfiref0x/Misc
Miscellaneous Code and Docs
Language:C77 5 023
hfiref0x/ROCALL
ReactOS x86-32 syscall fuzzer
Language:C49 8 057
hfiref0x/BSODScreen
BSOD Screensaver
Language:C41 5 117
hfiref0x/al-khaser
(This is a fork used primarily to submit patches into upstream repository) Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
Language:C++19 2 09
hfiref0x/AsIo3Unlock
ASUSTeK AsIO3 I/O driver unlock
Language:C19 3 04
hfiref0x/RpcView
(This is a fork used primarily to submit patches into upstream repository) RpcView is a free tool to explore and decompile Microsoft RPC interfaces
Language:C++18 2 07
hfiref0x/LightFTP_win
Language:C14 4 06
hfiref0x/hfiref0x.github.io
Language:HTML11 3 01
hfiref0x/Vault
Various code from the past (for historical purposes)
Language:Pascal11 3 012
hfiref0x/pdbex
(This is a fork used primarily to submit patches into upstream repository) pdbex is a utility for reconstructing structures and unions from the PDB into compilable C headers
Language:C++4 3 07
hfiref0x/AR4FFC
Archive repository for fast fact-checks
3 3 03