Pinned Repositories
anycall
x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
anymapper
x64 Windows kernel driver mapper, inject unsigned driver using anycall
CVE-2022-42046
CVE-2022-42046 Proof of Concept of wfshbr64.sys local privilege escalation via DKOM
evil-mhyprot-cli
A PoC for Mhyprot2.sys vulnerable driver that allowing read/write memory in kernel/user via unprivileged user process.
libmhyprot
A static library, wrapper for mhyprot vulnerable driver, execute exploits and tests
MsIoExploit
Exploit MsIo vulnerable driver
NoPatchGuardCallback
x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code
NtSymbol
Resolve DOS MZ executable symbols at runtime
PageTableInjection
Code Injection, Inject malicious payload via pagetables pml4.
Van1338
A journal for $6,000 Riot Vanguard bounty.
kkent030315's Repositories
kkent030315/anycall
x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
kkent030315/CVE-2022-42046
CVE-2022-42046 Proof of Concept of wfshbr64.sys local privilege escalation via DKOM
kkent030315/anymapper
x64 Windows kernel driver mapper, inject unsigned driver using anycall
kkent030315/Van1338
A journal for $6,000 Riot Vanguard bounty.
kkent030315/razy_importer
Rust implementation of lazy_importer
kkent030315/CiGetCertPublisherName
An example code of CiGetCertPublisherName
kkent030315/detect-anyrun
ANY.RUN sandbox detection collection
kkent030315/IDARustCargo
kkent030315/lazy_importer
library for importing functions from dlls in a hidden, reverse engineer unfriendly way
kkent030315/ntstatus
NTSTATUS bindings for Rust
kkent030315/vgrl1337
Vanguard vgrl.dll ordinal 1337 is a mystery
kkent030315/PSVSEnv
Fork of PSVSEnv
kkent030315/systeminformer
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com
kkent030315/titan
Titan is a VMProtect devirtualizer
kkent030315/vmprotect
Unofficial Rust SDK for VMProtect
kkent030315/winapi-rs
Rust bindings to Windows API
kkent030315/windows-driver-docs-ddi
The official Windows Driver Kit DDI reference documentation sources
kkent030315/windows-service-rs
Windows services in Rust
kkent030315/actions-base64-decode
kkent030315/actions-base64-encode
kkent030315/actions-zstd
Zstd support for Github Actions
kkent030315/dump-cargo-version
A Github action to dump package version in Cargo.toml
kkent030315/gitignore
A collection of useful .gitignore templates
kkent030315/goblin
An impish, cross-platform binary parsing crate, written in Rust
kkent030315/include-flate
A variant of include_bytes!/include_str! with compile-time deflation and runtime lazy inflation
kkent030315/ispc
Intel® Implicit SPMD Program Compiler
kkent030315/octocrab
A modern, extensible GitHub API Client for Rust.
kkent030315/rust
Empowering everyone to build reliable and efficient software.
kkent030315/typeorm-fixtures
:pill: Fixtures loader for typeorm 🇺🇦
kkent030315/win-task-dialog-for-rust
Simply call the Win32 API TaskDialogIndirect in Rust.