Pinned Repositories
ariago
ARIA implementation with Go
drivercodegen
driver code generator for VS2019
gowinsvc
Go 로 Windows Service 를 만들기 위한 도우미
krn_pcre
Windows Kernel Mode PCRE
phnt
Native API header files for the Process Hacker project.
PyProcFilter
Process Filter for Python
Rubbish
Rubbish Collection
kernullist's Repositories
kernullist/BugChecker
SoftICE-like kernel debugger for Windows 11
kernullist/ADPT
DLL proxying for lazy people
kernullist/AsmHalosGate
x64 Assembly HalosGate direct System Caller to evade EDR UserLand hooks
kernullist/AtomPePacker
A Highly capable Pe Packer
kernullist/boiii
☄️ Reverse engineering and analysis of Call of Duty: Black Ops III
kernullist/concealed_code_execution
Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
kernullist/CustomProcessingUnit
The first dynamic analysis framework for CPU microcode
kernullist/CVE-2024-26229
CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code
kernullist/DarkWidow
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing
kernullist/DotDumper
An automatic unpacker and logger for DotNet Framework targeting files
kernullist/eagle-rs
Rusty Rootkit: Windows Kernel Driver in Rust for Red Teamers
kernullist/formatPE
A bunch of parsers for PE and PDB formats in C++
kernullist/FUD-UUID-Shellcode
kernullist/Gepetto
IDA plugin which queries OpenAI's davinci-003 language model to speed up reverse-engineering
kernullist/go-secdump
Tool to remotely dump secrets from the Windows registry
kernullist/goffloader
A Go implementation of Cobalt Strike style BOF/COFF loaders.
kernullist/KDU
Kernel Driver Utility
kernullist/Kernel-Overlay-Hider
kernullist/linjector-rs
Code injection on Android without ptrace
kernullist/Mangle
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
kernullist/NamedPipeMaster
a tool used to analyze and monitor in named pipes
kernullist/NoScreen
Hiding the window from screenshots using the function win32kfull::GreProtectSpriteContent
kernullist/ntoskrnl_file_collection
Collect various versions of ntoskrnl files
kernullist/Offensive-OSINT-Tools
OffSec OSINT Pentest/RedTeam Tools
kernullist/portaudio
PortAudio is a cross-platform, open-source C language library for real-time audio input and output.
kernullist/VehApiResolve
kernullist/VmwareHardenedLoader
Vmware Hardened VM detection mitigation loader (anti anti-vm)
kernullist/Windows-Kernel-Explorer
A free but powerful Windows kernel research tool
kernullist/Yumekage
Demo proof of concept for shadow regions, and implementation of HyperDeceit.
kernullist/ZeroHVCI
Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling without admin permissions or kernel drivers.