0xPrimo / Ntdll-UnhookingLinks
Ntdll Unhooking
☆12Updated last month
Alternatives and similar repositories for Ntdll-Unhooking
Users that are interested in Ntdll-Unhooking are comparing it to the libraries listed below
Sorting:
- ☆27Updated 4 months ago
- BypassCredGuard CS BOF☆41Updated 4 months ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆36Updated last year
- Less sugar (entropy) for your binaries☆22Updated 2 months ago
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆31Updated 11 months ago
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆21Updated last year
- ☆30Updated 2 months ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆48Updated last year
- Windows C++ Implant for Exploration C2☆31Updated last week
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆18Updated 2 years ago
- Beacon Debugger☆40Updated 7 months ago
- NailaoLoader: Hiding Execution Flow via Patching☆21Updated 3 months ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆41Updated 2 years ago
- Unhook Ntdll.dll, Go & C++.☆22Updated last month
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆60Updated last year
- Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.☆28Updated 3 years ago
- Execute dotnet app from unmanaged process☆75Updated 5 months ago
- ☆36Updated 2 years ago
- A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure …☆16Updated 3 months ago
- Sliver agent rewritten in C++☆44Updated 9 months ago
- A simple BOF (Beacon Object File) to search files in the system☆14Updated last year
- Proxy function calls through the thread pool with ease☆28Updated 3 months ago
- converts sRDI compatible dlls to shellcode☆29Updated 4 months ago
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…☆34Updated 3 years ago
- A VSCode plugin to assist with BOF development.☆36Updated 9 months ago
- Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD☆26Updated last year
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆29Updated 4 months ago
- Beacon Object File (BOF) Template☆51Updated 6 months ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆23Updated last year
- Windows x64 Process Injection via Ghostwriting with Dynamic Configuration☆29Updated 3 years ago