mh4x0f

mh4x0f's Stars

• x64dbg/x64dbg

  An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

  Language:C++45.2k2.7k2.5k2.5k

• coollabsio/coolify

  An open-source & self-hostable Heroku / Netlify / Vercel alternative.

  Language:PHP36.2k1222.1k2k

• gojue/ecapture

  Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

  Language:C13.8k1013471.5k

• pardeike/Harmony

  A library for patching, replacing and decorating .NET and Mono methods during runtime

  Language:C#5.4k94454507

• DeviceFarmer/stf

  Control and manage Android devices from your browser.

  Language:JavaScript3.6k74278498

• Pennyw0rth/NetExec

  The Network Execution Tool

  Language:Python3.5k29167394

• HyperDbg/HyperDbg

  State-of-the-art native debugging tools

  Language:C3k89158384

• Notselwyn/CVE-2024-1086

  Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.

  Language:C2.3k2717301

• SafeBreach-Labs/PoolParty

  A set of fully-undetectable process injection techniques abusing Windows Thread Pools

  Language:C++984163138

• SychicBoy/NETReactorSlayer

  An open source (GPLv3) deobfuscator and unpacker for Eziriz .NET Reactor

  Language:C#9815354230

• caksoylar/keymap-drawer

  Visualize keymaps that use advanced features like hold-taps and combos, with automatic parsing

  Language:Python78417364

• Flangvik/SharpDllProxy

  Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading

  Language:C#74610394

• crvvdev/MasterHide

  A x64 Windows Rootkit using SSDT or Hypervisor hook

  Language:C++5201210111

• eversinc33/Banshee

  Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.

  Language:C++50813273

• helviojunior/hookchain

  HookChain: A new perspective for Bypassing EDR Solutions

  Language:C46510177

• Cracked5pider/LdrLibraryEx

  A small x64 library to load dll's into memory.

  Language:C43013273

• kernelm0de/ProcessHider

  Hide Process From Task Manager using Usermode API Hooking

  Language:C33311365

• mrexodia/perfect-dll-proxy

  Perfect DLL Proxying using forwards with absolute paths.

  Language:Python2616126

• logangoins/Cable

  .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation

  Language:C#25831

• KiFilterFiberContext/warbird-hook

  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard

  Language:C++2435029

• CICADA8-Research/COMThanasia

  A set of programs for analyzing common vulnerabilities in COM

  Language:C++1632028

• checkymander/Carbuncle

  Tool for interacting with outlook interop during red team engagements

  Language:C#1447325

• thiagopeixoto/winsos-poc

  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.

  Language:C++1081025

• sensepost/mail-in-the-middle

  Language:Python105409

• caksoylar/zmk-rgbled-widget

  A ZMK module to add battery & BT indicators using an RGB LED (like in Xiao BLEs)

  Language:C963317

• asmtlab/snafflepy

  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler

  Language:Python914314

• Maksim-Isakau/zmk-split-battery

  ZMK Split Battery Status in system tray

  Language:C#52246

• mh4x0f/zmkBATx

  Opensource tool for peripheral battery monitoring zmk split keyboard over BLE for linux

  Language:C++28123

• klezVirus/evilginx-collection

  Public repo of some woking evilginx phishlets

  2610

• gildasio/wshlient

  A simple tool to interact with web shells and command injection vulnerabilities

  Language:Python24100