Underhill Linux Kernel

Zero shot vulnerability discovery using LLMs

Evasive shellcode loader

For paper "ReSym: Harnessing LLMs to Recover Variable and Data Structure Symbols from Stripped Binaries" by Danning Xie, Zhuo Zhang, Nan Jiang, Xiangzhe Xu, Lin Tan, and Xiangyu Zhang. Accepted by …

Public repository containing materials for various malware-related streams.

Trend Micro Deep Security Agent: DNS Exfiltration using dsa_control buildin utility

Home of OpenVMM and OpenHCL.

Debug-assisted Argument Spoofing

CVE-2024-30090 - LPE PoC

PoC for the Untrusted Pointer Dereference in the ks.sys driver

vulnlab.com reaper writeup

This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone is created, it utilizes MINIDUMP_CALLBACK_INFORMATION callb…

A collection of slides and presentations from BSides Ahmedabad 2024, held on October 12th and 13th. This repository features key insights and topics in cybersecurity, showcasing sessions and worksh…

Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py

Open Source XSS exploitation tool. using http proxy to access the browser which executed this project. [Engineering Experimental]

Rid_enum is a null session RID cycle attack for brute forcing domain controllers.

Unauthenticated Remote Code Execution via Angular-Base64-Upload Library

.NET post-exploitation toolkit for Active Directory reconnaissance and exploitation

RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers (CSPs)

Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement

Query owned devices for BitlockerKey in AzureAD

BRICS+ CTF 2024 Quals

Frida's setHardwareWatchpoint tutorial

Open Source eBPF Malware Analysis Framework

IDA/Binary Ninja Plugin to automatically identify and set enums for standard functions

Linux Security Summit slide

Generate a proxy dll for arbitrary dll