bootlicker: A terribly written but functioning UEFI shellcode bootkit patched into a firmware volume or boot device on the EFI partition

symbolic execution plugin for binary ninja

Various UEFI utilities built against UDK2018. Includes X64 binaries.

A True Instrumentable Binary Emulation Framework

Source code behind the Windows Subsystem for Linux documentation.

An x86-64 Code Virtualizer

Emulation and Feedback Fuzzing of Firmware with Memory Sanitization

My Python Examples

A repository that includes all the important wordlists used while bug hunting.

Windows Installer Bypass using Rollback Script .rbs and .rbf - Race Condition

BleachBit system cleaner for Windows and Linux

eicar standard antivirus test files

A non-traditional keylogger that can intercept composite characters generated by IME

Log data to/from SSL_write/SSL_read to disk using LD_PRELOAD hooks

User mode file system library for windows with FUSE Wrapper

Hackers to Hackers Conference (H2HC) presentation in São Paulo

Proofs-of-concept

Hook function calls by inserting jump instructions at runtime

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

Targeting Windows Kernel Driver Fuzzer

It's a kernel-based keylogger for Windows x86/x64.

Bypassing PatchGuard on modern x64 systems

https://lolad-project.github.io/

Obfusheader.h is a portable header file for C++14 compile-time obfuscation.

CVE-2024-30090 - LPE PoC

baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability