0xNinjaCyclone / IATUnhooker
IAT Unhooking proof-of-concept
☆29Updated 11 months ago
Alternatives and similar repositories for IATUnhooker:
Users that are interested in IATUnhooker are comparing it to the libraries listed below
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆38Updated 8 months ago
- ☆59Updated last year
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated 10 months ago
- ☆47Updated 2 years ago
- Detect userland hooks placed by AV/EDR☆27Updated last year
- Items related to the RedELK workshop given at security conferences☆28Updated last year
- A small red team course☆36Updated last year
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆25Updated 2 years ago
- malleable profile generator GUI for Havoc☆56Updated last year
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe☆13Updated last year
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆55Updated 2 years ago
- A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc☆13Updated 5 years ago
- Create PDFs with HTML smuggling attachments that save on opening the document.☆29Updated last year
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52Updated 10 months ago
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆62Updated 3 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- in-process powershell runner for BRC4☆45Updated last year
- A pure C version of SymProcAddress☆26Updated last year
- Situational Awareness script to identify how and where to run implants☆48Updated 3 months ago
- Some of the presentations, workshops, and labs I gave at public conferences.☆30Updated 6 months ago
- Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL☆21Updated 2 years ago
- A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.☆43Updated last year
- This repository focuses on replicating the behavioral patterns observed in well-documented APT campaigns.☆11Updated this week
- ☆54Updated 5 months ago
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆47Updated last year
- ☆17Updated 3 weeks ago
- A repository with my code snippets for research/education purposes.☆50Updated last year
- Random☆32Updated 2 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆65Updated 9 months ago
- Token Elevation to authorized user as SYSTEM or Domain Admins☆23Updated last year