exploit

View on GitHub

Exploit

Advanced Windows exploit development resources

Really important resources

Windows Rootkits

Talks / video recordings

Articles / papers

Advanced Windows debugging

Talks / video recordings

Articles / papers

Windows kernel mitigations

Talks / video recordings

Articles / papers

General mitigation papers

kASLR

SMEP

CET

Windows kernel shellcode

Articles / papers

Windows kernel exploitation

Talks / video recordings

Articles / papers

Windows kernel GDI exploitation

Talks / video recordings

Articles / papers

Windows kernel Win32k.sys research

Talks / video recordings

Articles / papers

Windows Kernel logic bugs

Talks / video recordings

Articles / papers

Windows kernel driver development

Talks / video recordings

Articles / papers

Windows internals

Talks / video recordings

0days - APT advanced malware research

Talks / video recordings

Articles / papers

Video game cheating (kernel mode stuff sometimes)

Talks / video recordings

Articles / papers

Hyper-V and VM / sandbox escape

Talks / video recordings

Articles / papers

Fuzzing

Talks / video recordings

Articles / papers

Windows browser exploitation

Talks / video recordings

APT_CyberCriminal_Campagin_Collections

APT_CyberCriminal_Campagin_Collections

/metasploit-unleashed/

metasploit-unleashed

hot

hot

hot

Exploit Cheat Sheet

hot

/EXPLOIT/MAP MITRE ATT&CK Navigator

windows-kernel-exploits ms16-135 & etc..

privilege-escalation

ByPassUAC and etc..

https://github.com/antonioCoco/RogueWinRM

чекер типо Sherlock-a

UAC-me 59 методик

UAC_Bypass_In_The_Wild 20 методов

PivotSuite PivotSuite - это портативный, независимый от платформы и мощный набор инструментов для поворота сети, который помогает Red Teamers / Penetration Testers использовать взломанную систему для перемещения внутри сети. Это отдельная утилита, которую можно использовать как сервер или как клиент.

CyberThreatIntel

Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups

awesome-windows-kernel-security-development

powershell

pe file format

asm ide

meltdown/spectre poc

lightweight c++ gui library

direct ui

chrome

chrome Extension

cef

WebBrowser

d3d

opencv

lua

c++ 11/14/17/20

cmake

DesignPattern

c++ & js

gdi/gdi+

computer vision & machine learning

compress

Dongle

spy++

Shell Extension for Windows Explorer

windows system programming

etw

wsl/unix

device tree

irp monitor

nt crucial modules

windows kernel driver

windows kernel driver with c++ runtime

blackbone

hidinput

dkom

ssdt hook

eat/iat/object/irp/iat hook

InfinityHook

inline hook

hook engine

anti hook

inject technique (ring0)

inject technique (ring3)

WoW64 <-> x64

anti autorun

anti dll inject

load Dll from memory

Unpack dll load in runtime

dll hijack

com hijack

anti dll hijack

process hollowing

pe loader

memory pe dumper

dll map detection

dll to shellcode

dll to exe

hide process

hide & delete dll

load driver from memory

bypass memory scanner

KeUserModeCallBack

callback

keyboard filter

usb filter

sfilter

minifilter

anti Ransomware

virtual disk

virtual file system

lpc

alpc

lsp/spi

afd

tdi

wfp

ndis

game accelerator

wsk

rootkits

mbr

bootkits

uefi/smm

bootloader

smc

anti debug

crypters

malware

EternalBlue && Doublepulsar && Mine

shellcode analysis

malware analysis

av evasion

arktools

bypass patchguard

bypass dse

HackSysExtremeVulnerableDriver

windows exploits

linux exploits

windows kernel exploits

LPE

linux exploit

office exploit

flash exploit

sandbox

sandbox escape

anti exploit

cve

hips

windows hypervisor

kvm

vt

firmware

fuzzer

emet

hotpatch

memory hack

game

game hack

anti cheat

software reverse

pe protector

unpacker

emulate code execution

pin

symbolic execution

obfuscation

deobfuscation

taint analyse

bin diff

debugger

x64dbg plugin

live kernel debug

windbg plugin

virtualkd

ida script & plugin

ida sig maker

idapython

pykd

rpc

hash dump

auxiliary lib

ring3 nt api

winpcap

metasploit

shellcode generator

shellcode encoder

shadow

network lib

http

https proxy

sock proxy

reverse proxy

mitm

ssl

json

serialization

awesome

windows Driver Kit ddi (device driver interface) documentation

windbg preview & jsprovider

anti-anti-vm

vm

spy++

pe tool

tools

post-exploitation

nsa security tools

apt

3rd party library

rpc

adblock

bypass uac

miscellaneous

slides

blogs

sec tools

waf

web security research site

development documents

browser automated test

docker

leaked source code

sspi

openssl

pdb

gpu

crypto api

ipc

iot sec

ascii banner

book code

regex

paper

ebook

ctf

pentest

wpad/pac

javascript

js obfuscator/deobfuscator

decompiler

encryption/decryption tools

english

downloader

python

puppeteer

java

android

android reverse engine

library

awesome-windows-kernel-security-development