Cracked5pider / CodeCave
A bunch of scripts and code i wrote.
☆135Updated 4 months ago
Alternatives and similar repositories for CodeCave:
Users that are interested in CodeCave are comparing it to the libraries listed below
- Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…☆176Updated last year
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆92Updated 11 months ago
- ☆144Updated 7 months ago
- Splitting and executing shellcode across multiple pages☆100Updated last year
- Malware?☆69Updated 5 months ago
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆106Updated last year
- ☆120Updated last year
- Construct the payload at runtime using an array of offsets☆63Updated 9 months ago
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctype…☆113Updated last year
- A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…☆157Updated 9 months ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆257Updated 6 months ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆87Updated 9 months ago
- Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)☆141Updated last year
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- ☆133Updated last year
- Do some DLL SideLoading magic☆79Updated last year
- ☆123Updated 6 months ago
- Implementing the ghostly hollowing PE injection technique using tampered syscalls.☆138Updated last week
- Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak☆202Updated 2 years ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 7 months ago
- ☆181Updated last year
- Find DLLs with RWX section☆78Updated last year
- Patch AMSI and ETW in remote process via direct syscall☆81Updated 2 years ago
- Exploitation of process killer drivers☆197Updated last year
- An App Domain Manager Injection DLL PoC on steroids☆167Updated last year
- reflectively load and execute PEs locally and remotely bypassing EDR hooks☆151Updated last year