5 open source projects by forrest-orr

Phantom DLL hollowing PoC

✭ 135

Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.

✭ 99

shellcode generator malware forensics dll kit header pe

3. Exploits

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

✭ 75

c javascript assembly HTML NASL windows firefox browser exploit asm poc ie wpad cve uaf jscript cve-2020-0674 cve-2019-17026 ionmonkey ms12-037 ms13-008 ms14-051

4. DoubleStar

A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques

✭ 140

javascript c assembly firefox apt exploit chain jit rpc pac wpad star double eop alpc cve-2020-0674 cve-2019-17026 darkhotel

5. moneta

Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs

✭ 384

C++c C#windows ioc memory scanner malware injection process dump moneta pe artifact reflective usermode hollowing

1-5 of 5 user projects