π» Windows 10 Kernel-mode rootkit
β32Sep 3, 2022Updated 3 years ago
Alternatives and similar repositories for WinKit
Users that are interested in WinKit are comparing it to the libraries listed below
Sorting:
- Classic DLL injection. Download dll from url and inject. Simple C++ implementationβ10Apr 16, 2022Updated 3 years ago
- Released alongside with a talk at REcon 2023, TheRestarter is an interactive command-line tool is designed to interact with the Windows β¦β15Jun 8, 2023Updated 2 years ago
- Malware persistence via COM DLL hijacking. C++ implementation exampleβ13May 2, 2022Updated 3 years ago
- Process injection via KernelCallbackTableβ13Jan 28, 2022Updated 4 years ago
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraftβ145May 18, 2024Updated last year
- PoC showing how a potentially malicious script could be hidden, encrypted, into invisible unicode charactersβ15May 26, 2019Updated 6 years ago
- Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!β249Jul 9, 2024Updated last year
- Exploring in-memory execution of .NETβ138Apr 20, 2022Updated 3 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion techniqueβ52Dec 6, 2018Updated 7 years ago
- Simple and sane compression wrapper library.β19Oct 28, 2022Updated 3 years ago
- My personal shellcode loaderβ32Mar 9, 2023Updated 2 years ago
- Crossplatform tool for inject shellcode into .exe and .dll binaries (x86 and x64)β75Dec 22, 2025Updated 2 months ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.β21Jan 25, 2022Updated 4 years ago
- Trolling Keyloggers by Forcing them to log Specific Text then freezing themβ22Jul 30, 2022Updated 3 years ago
- WTSRMβ216Aug 7, 2022Updated 3 years ago
- Enumerate various traits from Windows processes as an aid to threat huntingβ202Jan 13, 2022Updated 4 years ago
- This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCrβ¦β63Feb 11, 2024Updated 2 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if needeβ¦β26Aug 11, 2023Updated 2 years ago
- Simple x86 Trampoline Hookβ44Aug 3, 2022Updated 3 years ago
- POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and filesβ62Aug 1, 2023Updated 2 years ago
- β20Dec 11, 2017Updated 8 years ago
- Bypassing kernel patch protection runtimeβ22Feb 19, 2023Updated 3 years ago
- miscellaneous scripts and programsβ277Jan 23, 2025Updated last year
- Inject dll to explorer.exe and hide file from process.β23Apr 24, 2021Updated 4 years ago
- A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).β90Nov 23, 2022Updated 3 years ago
- Various ways to execute shellcodeβ507Mar 13, 2024Updated last year
- Bypassing PatchGuard on modern x64 systemsβ265Apr 9, 2023Updated 2 years ago
- Easy XOR string encryption for NET based binariesβ139Nov 4, 2023Updated 2 years ago
- Block any Process to open HANDLE to your process , only SYTEM is allowed to open handle to your process ,with that you can avoid remote mβ¦β173Apr 27, 2023Updated 2 years ago
- Bypass Malware Time Delaysβ107Sep 23, 2022Updated 3 years ago
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly levelβ26Jul 21, 2022Updated 3 years ago
- Malware development: persistence - part 1: startup folder registry keys. C++ implementationβ12Apr 21, 2022Updated 3 years ago
- This is the gandcrab v5.0.3 javascript dropperβ10Apr 29, 2020Updated 5 years ago
- Malware detection by entropy - ascii entropy and binary entropyβ10Mar 19, 2017Updated 8 years ago
- Malware?β77Oct 26, 2025Updated 4 months ago
- Append custom data to signed pe file and DONOT DESTROY SIGNED STATUS.β26Mar 13, 2021Updated 4 years ago
- Executes shellcode from a remote server and aims to evade in-memory scannersβ32Nov 17, 2019Updated 6 years ago
- A tutorial on how to write a packer for Windows!β310Dec 15, 2023Updated 2 years ago
- This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for locβ¦β55May 8, 2023Updated 2 years ago