eicar standard antivirus test files

Hackers to Hackers Conference (H2HC) presentation in São Paulo

Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.

Proof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers

A GUI to quickly manage your WSL2 instances

A command line tool and library for transferring data with URL syntax, supporting DICT, FILE, FTP, FTPS, GOPHER, GOPHERS, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, MQTT, POP3, POP3S, RTMP, RTMPS, RTSP…

TLS/SSL and crypto library

Parses amcache.hve files, but with a twist!

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatab…

A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository…

A self-paced course to learn Rust, one exercise at a time.

Plantronics Desktop Hub LPE

Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...

build-once run-anywhere c library

Windows software for sharing locally connected USB devices to other machines, including Hyper-V guests and WSL 2.

Scripts to build a trimmed-down Windows 11 image.

Advanced WSL launcher / installer. (Win10 FCU x64/arm64 or later.)

💯 Curated coding interview preparation materials for busy software engineers

USB packet capture for Windows

Frame profiler

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.

Proof of Concept code and samples presenting emerging threat of MSI installer files.

A tool to view and extract the contents of an Windows Installer (.msi) file.

Collection of resources about Virtualization

Stealing Signatures and Making One Invalid Signature at a Time

Run macOS on QEMU/KVM. With OpenCore + Monterey + Ventura + Sonoma support now! Only commercial (paid) support is available now to avoid spammy issues. No Mac system is required.

Proof of concept for CVE-2021-24086, a NULL dereference in tcpip.sys triggered remotely.

Direct Memory Access (DMA) Attack Software

collect for learning cases

PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.