0x4d5a-ctf / 38c3_com_talk
Slides for COM Hijacking AV/EDR Talk on 38c3
☆72Updated 2 months ago
Alternatives and similar repositories for 38c3_com_talk:
Users that are interested in 38c3_com_talk are comparing it to the libraries listed below
- ☆85Updated 7 months ago
- ☆61Updated 9 months ago
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆42Updated 2 months ago
- An example reference design for a proposed BOF PE☆126Updated last month
- ☆96Updated 2 months ago
- ☆98Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆101Updated last month
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆60Updated 2 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆72Updated last month
- "Service-less" driver loading☆148Updated 3 months ago
- CVE-2024-30090 - LPE PoC☆105Updated 5 months ago
- A simple C++ Windows tool to get information about processes exposing named pipes.☆36Updated 2 weeks ago
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆92Updated 11 months ago
- A collection of position independent coding resources☆67Updated last month
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆42Updated 8 months ago
- stack spoofing☆80Updated 4 months ago
- remote process injections using pool party techniques☆55Updated last month
- Rust template/library for implementing your own COFF loader☆49Updated last month
- ☆52Updated 2 months ago
- Bypass LSA protection using the BYODLL technique☆155Updated 6 months ago
- shell code example☆33Updated last week
- Malware?☆69Updated 5 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆81Updated 2 weeks ago
- Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar☆129Updated 7 months ago
- Splitting and executing shellcode across multiple pages☆100Updated last year
- early cascade injection PoC based on Outflanks blog post, in rust☆56Updated 4 months ago
- Construct the payload at runtime using an array of offsets☆63Updated 9 months ago
- ☆25Updated 3 months ago
- Rusty Hell's Gate / Halo's Gate / Tartarus' Gate / FreshyCalls / Syswhispers2 Library☆27Updated 2 years ago
- Threadless shellcode injection tool☆63Updated 7 months ago