Ap3x / WALKWHISPERLinks
Windows API header file parsing tool to generate source code for Windows API hashing
☆5Updated 2 years ago
Alternatives and similar repositories for WALKWHISPER
Users that are interested in WALKWHISPER are comparing it to the libraries listed below
Sorting:
- Just another ntdll unhooking using Parun's Fart technique☆75Updated 2 years ago
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆39Updated 2 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆57Updated 2 years ago
- ☆59Updated last year
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆82Updated last year
- Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation☆31Updated 2 years ago
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆100Updated last year
- A more reliable way of resolving syscall numbers in Windows☆49Updated last year
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52Updated last year
- Lifetime AMSI bypass.☆35Updated 2 months ago
- malleable profile generator GUI for Havoc☆55Updated 2 years ago
- ☆69Updated last year
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆84Updated 2 years ago
- ☆48Updated 2 years ago
- Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL☆22Updated 2 years ago
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆26Updated 2 years ago
- A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system☆39Updated 7 months ago
- API Hammering with C++20☆46Updated 2 years ago
- Token Elevation to authorized user as SYSTEM or Domain Admins☆23Updated 2 years ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆62Updated last year
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆38Updated 11 months ago
- Find DLLs with RWX section☆81Updated last year
- ☆75Updated 10 months ago
- Situational Awareness script to identify how and where to run implants☆52Updated 6 months ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆67Updated last year
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆78Updated 10 months ago
- quASAR: ASAR manipulation made easy☆38Updated 2 years ago
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆19Updated 5 months ago
- Python module for running BOFs☆70Updated last year