Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file

Use RTCore64 to map your driver on windows 11.

Inject .NET assemblies into an existing process

usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to map your driver over. the main focus of this project is to p…

Dynamic unpacker and import fixer for Themida/WinLicense 2.x and 3.x.

Themida unpacker

A port of DrunkenCheetah's Project to x64

More than a ReClass port to the .NET platform.

This guide provides illustrative examples demonstrating the usage of Il2cppInspector C++ scaffold.

The world’s 1st book of very detailed iOS App reverse engineering skills :)

Dump the memory of a PPL with a userland exploit

This tool will allow you to bypass VMProtect .NET AntiDebugger. Made by Cabbo.

manual map unsigned driver over signed memory

Opinionated security and code quality standard for Solidity smart contracts.

ROPDump is a command-line tool designed to analyze binary executables for potential Return-Oriented Programming (ROP) gadgets, buffer overflow vulnerabilities, and memory leaks.

VMUnprotect can dynamically log and manipulate calls from virtualized methods by VMProtect.

VMUnprotect.Dumper can dynamically untamper VMProtected Assembly.

Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework

RunasCs - Csharp and open version of windows builtin runas.exe

Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).

This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots.

DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.

BBT - Bug Bounty Tools (examples💡)

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

Compileable POC of namazso's x64 return address spoofer.

A centralized resource for previously documented WDAC bypass techniques

🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust

A Nim implementation of reflective PE-Loading from memory

Admin to Kernel code execution using the KSecDD driver