Skip to content
View jdu2600's full-sized avatar
98 followers · 0 following
  • Canberra, Australia

Achievements

Achievement: Pair Extraordinairex4Achievement: Pull Sharkx3Achievement: YOLOAchievement: Starstruckx2Achievement: Arctic Code Vault Contributor

Achievements

Achievement: Pair Extraordinairex4Achievement: Pull Sharkx3Achievement: YOLOAchievement: Starstruckx2Achievement: Arctic Code Vault Contributor

Block or report jdu2600

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Popular repositories Loading

  1. Windows10EtwEvents Windows10EtwEvents Public

    Events from all manifest-based and mof-based ETW providers across Windows 10 versions

    C# 266 56

  2. CFG-FindHiddenShellcode CFG-FindHiddenShellcode Public

    Walks the CFG bitmap to find previously executable but currently hidden shellcode regions

    C++ 100 12

  3. EtwTi-FluctuationMonitor EtwTi-FluctuationMonitor Public

    Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections

    C++ 95 10

  4. Etw-SyscallMonitor Etw-SyscallMonitor Public

    Monitors ETW for security relevant syscalls maintaining the set called by each unique process

    C# 49 5

  5. Get-InjectedThreadEx Get-InjectedThreadEx Public

    Fork of Get-InjectedThread - https://gist.github.com/jaredcatkinson/23905d34537ce4b5b1818c3e6405c1d2

    PowerShell 27 4

  6. API-To-ETW API-To-ETW Public

    Uses ghidra to find all ETW write metadata for each API in a PE file

    Java 11 1