Mirrors/wavestone-cdt-edrsandblast
1
0
Fork 0
mirror of https://github.com/wavestone-cdt/EDRSandblast.git synced 2026-06-08 16:37:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
3c3cc307ce39e46cb9a3193fb84de7f334384d43
wavestone-cdt-edrsandblast/EDRSandblast/Includes
T
History
Maxime Meignan bf749f54c7 PE parser: added a feature to parse a PE directly from kernel memory 
Could be used in the future to resolve export instead of a
suspicious LoadLibrary("ntoskrnl.exe")
2023-11-03 16:13:13 +01:00
..
CiOffsets.h
DSE bypass : implemented "callback swapping" method
2023-11-03 15:13:36 +01:00
CredGuard.h
Header inclusion feng-shui (each file only includes what it needs)
2021-12-31 17:29:14 +01:00
DriverDBUtil.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
DriverGDRV.h
New BYOVD-driver support: GDRV.sys (GigaByte)
2023-10-06 12:45:28 +02:00
DriverOps.h
Add feature : loading unsigned driver
2023-10-06 12:48:29 +02:00
DriverRTCore.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
ETWThreatIntel.h
Header inclusion feng-shui (each file only includes what it needs)
2021-12-31 17:29:14 +01:00
FileUtils.h
DSE bypass : implemented "callback swapping" method
2023-11-03 15:13:36 +01:00
FileVersion.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
Firewalling.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
FirewallOps.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
HttpClient.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
IsEDRChecks.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
IsElevatedProcess.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
KernelCallbacks.h
Add feature : loading unsigned driver
2023-10-06 12:48:29 +02:00
KernelDSE.h
DSE bypass : implemented "callback swapping" method
2023-11-03 15:13:36 +01:00
KernelMemoryPrimitives.h
small cleanup in header files
2023-10-06 16:12:52 +02:00
KernelPatternSearch.h
Header inclusion feng-shui (each file only includes what it needs)
2021-12-31 17:29:14 +01:00
KernelUtils.h
CiOptions: Simplifies the way CI.dll base address is recovered
2023-10-09 16:30:36 +02:00
ListUtils.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
NtoskrnlOffsets.h
DSE bypass : implemented "callback swapping" method
2023-11-03 15:13:36 +01:00
ObjectCallbacks.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
PdbParser.h
Implements a check on PDB files to avoid using an invalid one and crash the machine
2023-10-10 15:44:20 +02:00
PdbSymbols.h
Implements a check on PDB files to avoid using an invalid one and crash the machine
2023-10-10 15:44:20 +02:00
PEBBrowse.h
Initial commit for public version
2021-11-08 09:54:05 +01:00
PEParser.h
PE parser: added a feature to parse a PE directly from kernel memory
2023-11-03 16:13:13 +01:00
PrintFunctions.h
CiOptions: Simplifies the way CI.dll base address is recovered
2023-10-09 16:30:36 +02:00
ProcessDump.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
ProcessDumpDirectSyscalls.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
RemotePEBBrowser.h
small cleanup in header files
2023-10-06 16:12:52 +02:00
RunAsPPL.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
SignatureOps.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
StringUtils.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
SW2_Syscalls.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
SyscallProcessUtils.h
small cleanup in header files
2023-10-06 16:12:52 +02:00
Syscalls.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
Undoc_64.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
Undoc.h
D3FC0N 30 release: Obj callbacks, firewalling, symbols w/ internet, and more
2022-08-13 09:23:48 -07:00
UserlandHooks.h
various cosmetic changes to please the code analyzer
2023-10-31 17:07:17 +01:00
WdigestOffsets.h
cosmetic changes & compiler warnings fixes
2023-10-09 14:57:49 +02:00
WindowsServiceOps.h
small cleanup in header files
2023-10-06 16:12:52 +02:00