0xcpu / winsmsdLinks
Windows (ShadowMove) Socket Duplication
☆83Updated 5 years ago
Alternatives and similar repositories for winsmsd
Users that are interested in winsmsd are comparing it to the libraries listed below
Sorting:
- ☆70Updated 4 months ago
- A simple COM server which provides a component to run shellcode☆135Updated 5 years ago
- Injects shellcode into remote processes using direct syscalls☆78Updated 4 years ago
- Hijack Printconfig.dll to execute shellcode☆98Updated 4 years ago
- ☆50Updated 4 years ago
- Recreating and reviewing the Windows persistence methods☆38Updated 3 years ago
- A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯☆40Updated 4 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆76Updated 5 years ago
- Lists of AMSI triggers (VBA, JScript / VBScript)☆33Updated 5 years ago
- An command-line RPC method enumerator, born out of RPCView's awesomeness☆104Updated 5 years ago
- inject or convert shellcode to PE☆39Updated 5 years ago
- ☆31Updated 4 years ago
- Source files for my posts☆16Updated last year
- ☆82Updated 3 years ago
- Files for http://deniable.org/windows/windows-callbacks☆25Updated 4 years ago
- ReaCOM has got a lot of tools to use and is related to component object model☆74Updated 5 years ago
- ☆62Updated 3 years ago
- Shellcode injection POC using syscalls.☆116Updated 5 years ago
- Assembly HellGate implementation that directly calls Windows System Calls and displays the PPID of the explorer.exe process☆103Updated 2 years ago
- C++ function that will automagically unhook a specified Windows API☆62Updated 4 years ago
- ☆141Updated 2 years ago
- CVE-2021-1732 poc & exp; tested on 20H2☆67Updated 4 years ago
- Proxy system calls over an RPC channel☆98Updated 3 years ago
- Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM☆123Updated 4 years ago
- Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets☆48Updated 3 years ago
- A small commented POC for removing API hooks placed by AV/EDR.