AnastasiKro / ALPCheckerLinks
ALPChecker - a tool to detect spoofing and blinding attacks on the ALPC interaction
☆13Updated 2 years ago
Alternatives and similar repositories for ALPChecker
Users that are interested in ALPChecker are comparing it to the libraries listed below
Sorting:
- A utility that can be used to launch an executable with a DLL injected☆19Updated last year
- A mechanism that trampoline hooks functions in x86/x64 systems.☆22Updated 11 months ago
- ☆18Updated 8 months ago
- DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable☆57Updated last year
- Scan strings or files for malware using the Windows Antimalware Scan Interface☆30Updated 2 years ago
- Parent Process ID Spoofing, coded in CGo.☆23Updated 5 months ago
- ECC Public Key Cryptography☆39Updated last year
- An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.☆15Updated last year
- One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel☆43Updated last year
- rpv-web is a browser based frontend for the rpv library☆26Updated 4 months ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆50Updated last year
- ☆20Updated this week
- An issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component☆11Updated 2 years ago
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆26Updated 2 years ago
- ☆32Updated last year
- ☆34Updated last year
- Extension functionality for the NightHawk operator client☆27Updated last year
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)☆45Updated 11 months ago
- A C# Tool to gather information about email breaches☆15Updated last year
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago
- Enumerate SSN (System Service Numbers or Syscall ID) and syscall instruction address in ntdll module by parsing the PEB of the current pr…☆21Updated last year
- ☆60Updated last year
- ☆17Updated 2 years ago
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆33Updated last year
- EvtPsst☆55Updated last year
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆34Updated last year
- A payload delivery system which embeds payloads in an executable's icon file!☆74Updated last year
- A simple rpc2socks alternative in pure Go.☆29Updated last year
- Easy peasy file uploads☆24Updated 3 weeks ago
- Proof of concept source code and misc files for my CVE-2025-21692 exploit, kernel version 6.6.75☆29Updated last week