C5Hackr / PEB-RedirectionLinks
☆11Updated last year
Alternatives and similar repositories for PEB-Redirection
Users that are interested in PEB-Redirection are comparing it to the libraries listed below
Sorting:
- A unique introduction to native runtime obfuscation.☆73Updated 7 months ago
- ☆26Updated last year
- My POC implementation of HVNC (Hidden VNC / Hidden Desktop)☆26Updated 9 months ago
- kernel-mode DLL Injector☆115Updated 6 months ago
- Troll TaskManager, and play with it .☆27Updated 2 months ago
- Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique☆13Updated 10 months ago
- Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…☆24Updated 5 months ago
- A Free Open sourced crypter that builds a output .NET .exe Stub (Updated whenever I feel like it)☆20Updated last week
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆43Updated 2 weeks ago
- Yandex browser passwords and credit-cards decryption algorithm☆20Updated 6 months ago
- Ransomware written in go, encrypt - decrypt.☆29Updated 6 months ago
- A 64 bit executable junk code engine for polymorphic malware.☆70Updated 4 months ago
- simple user-mode Rootkit☆107Updated 3 years ago
- Research into removing strings & API call references at compile-time (Anti-Analysis)☆27Updated last year
- ☆38Updated last year
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Updated last year
- EDR & AV Bypass Arsenal— a comprehensive collection of tools, patches, and techniques for evading modern EDR and antivirus defenses.☆29Updated 3 weeks ago
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆32Updated 3 years ago
- ☆49Updated last year
- NTAPI hook bypass with (semi) legit stack trace☆17Updated 2 years ago
- Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections☆147Updated 2 years ago
- Exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆105Updated last week
- ☆11Updated last year
- Unhook Ntdll.dll, Go & C++.☆30Updated 6 months ago
- Nim process hollowing loader☆60Updated 3 months ago
- a demo module for the kaine agent to execute and inject assembly modules☆42Updated last year
- The first open source runtime windows batch and command line deobfuscator☆40Updated 2 months ago
- "Service-less" driver loading☆162Updated 11 months ago
- ATL.dll and WmiMgmt.msc UAC Bypass☆13Updated 6 months ago
- SysCaller: SDK for WindowsAPI via syscalls. Dynamic Resolution, Obfuscation, Multi-Language Bindings, & more!☆49Updated last week