Ap3x / WALKWHISPER
Windows API header file parsing tool to generate source code for Windows API hashing
☆4Updated last year
Related projects ⓘ
Alternatives and complementary repositories for WALKWHISPER
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆37Updated 2 years ago
- ☆58Updated 10 months ago
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆51Updated 5 months ago
- Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation☆29Updated 2 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆53Updated 2 years ago
- Slide decks and/or materials from conference presentations☆54Updated last year
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆25Updated 2 years ago
- ☆43Updated 4 months ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆65Updated 4 months ago
- malleable profile generator GUI for Havoc☆56Updated last year
- Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL☆19Updated 2 years ago
- Lifetime AMSI bypass.☆36Updated 4 months ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆58Updated last year
- Python tool to find vulnerable AD object and generating csv report☆26Updated 2 years ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated 4 months ago
- ☆68Updated last year
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.☆40Updated last year
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.☆74Updated 5 months ago
- Python3 rewrite of AsOutsider features of AADInternals☆36Updated 2 months ago
- Python module for running BOFs☆64Updated last year
- Items related to the RedELK workshop given at security conferences☆27Updated last year
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆33Updated last month
- Token Elevation to authorized user as SYSTEM or Domain Admins☆23Updated last year
- A more reliable way of resolving syscall numbers in Windows☆49Updated 9 months ago
- IAT Unhooking proof-of-concept☆28Updated 7 months ago
- ☆47Updated last year
- A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80☆18Updated 11 months ago
- Utilities for obfuscating shellcode☆45Updated 4 months ago