Research of modifying exported function names at runtime (C/C++, Windows)
☆18May 28, 2024Updated last year
Alternatives and similar repositories for ModifyExports
Users that are interested in ModifyExports are comparing it to the libraries listed below
Sorting:
- Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging☆15Sep 21, 2019Updated 6 years ago
- Repository of different kernel drivers written while studying Windows NT Driver development☆12Apr 14, 2024Updated last year
- A python polymorphic engine for C programs☆11Dec 8, 2023Updated 2 years ago
- ☆29Dec 20, 2025Updated 3 months ago
- Poshito is a Windows C2 over Telegram☆21Oct 30, 2024Updated last year
- Manually perform syscalls without going through any external API or DLL.☆19Apr 19, 2023Updated 2 years ago
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆32Aug 23, 2023Updated 2 years ago
- Stub for polymorphic code☆11Mar 18, 2023Updated 3 years ago
- Reimplementation of the KExecDD DSE bypass technique.☆59Sep 7, 2024Updated last year
- Resources from my journey into Windows binary exploitation☆24Jan 14, 2019Updated 7 years ago
- Experiment to use sections as User/Kernelmode comm vector☆22Apr 7, 2023Updated 2 years ago
- A process injection technique using only thread context manipulation☆41Dec 18, 2023Updated 2 years ago
- ☆60Dec 15, 2023Updated 2 years ago
- A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing…☆14Nov 8, 2020Updated 5 years ago
- Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…☆16May 6, 2024Updated last year
- spoof return address☆80Apr 28, 2023Updated 2 years ago
- it's a driver injector or driver loader header lib(Windows)☆12Aug 5, 2023Updated 2 years ago
- Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms☆136Dec 20, 2022Updated 3 years ago
- Learnings about windows Internals☆99Nov 10, 2023Updated 2 years ago
- Walks through the 4-level paging structures in Windows x64☆13Feb 12, 2023Updated 3 years ago
- ☆25Apr 28, 2024Updated last year
- CreateRemoteThreadPlus: how to pass multiple parameters to the remote thread function without shellcode.☆139Jul 10, 2025Updated 8 months ago
- Dynamically generated obfuscated jumps and/or function calls☆38Apr 19, 2023Updated 2 years ago
- Elevate arbitrary MSR writes to kernel execution.☆47Sep 3, 2023Updated 2 years ago
- ☆23Jul 28, 2020Updated 5 years ago
- ☆10Dec 28, 2023Updated 2 years ago
- Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique☆20Dec 3, 2024Updated last year
- ☆46Feb 2, 2025Updated last year
- Threadless shellcode injection tool☆68Aug 5, 2024Updated last year
- Tutorial covering how to discover DLLs for Hijacking and how to create proxy DLLS using Microsoft Teams as an example☆16Apr 7, 2021Updated 4 years ago
- Header-only compile-time variables obfuscation library for C++20 and later. Compiler Support: MSVC (+WDM), Clang, GCC. Architecture Suppo…☆72Mar 10, 2026Updated last week
- Windbg extension port for rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.☆13Sep 8, 2023Updated 2 years ago
- valorant external cheat , aimbot and wallhacker☆11Jun 29, 2023Updated 2 years ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆87Apr 11, 2023Updated 2 years ago
- This repository provides a simple project demonstrating how to hook BitBlt from gdi32.dll to capture clean screenshots of game windows. B…☆33Sep 26, 2024Updated last year
- ☆17Dec 18, 2022Updated 3 years ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆41Dec 7, 2025Updated 3 months ago
- Things i do because i saw it on twitter on a weekend☆58Jul 20, 2025Updated 8 months ago
- Just check hypervisor in ring0☆16Jun 7, 2023Updated 2 years ago