y11en's Projects
Executes PowerShell from an unmanaged process
POC for CVE-2018-0824
Universal PatchGuard and Driver Signature Enforcement Disable(Win 越狱)
上传漏洞fuzz字典生成脚本
演示基于 win10、vs2017 开发 C++ Linux 程序的一些技巧
Host Intrusion Prevention System
Class framework for using kernel supported coroutines on Windows
Windows - Weaponizing privileged file writes with the Update Session Orchestrator service
PoC for UUID shellcode execution using DInvoke
dll injector for uwp apps
A VBA implementation of the RunPE technique or how to bypass application whitelisting.
Hide process,port,self under Linux using the ld_preload
一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webshell,命令执行或者上传公钥使用SSH免密连接
Mono process injector
《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料
Kernel driver to fuzz Hyper-V hypercalls
IDAPython tool for creating automatic C++ virtual tables in IDA Pro
An open source implementation of MultiAccount.(Support 4.0 - 8.0).
Test code only. Not reliable for actual use.
VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.
The x86 Script Instruction Virtual Machine
VM devirtualization PoC based on AsmJit and llvm
A VMP to VTIL lifter.
Obfuscation method using virtual machine.
Vmware Hardened VM detection mitigation loader (anti anti-vm)