Cracked5pider / CodeCave
A bunch of scripts and code i wrote.
☆134Updated 4 months ago
Alternatives and similar repositories for CodeCave:
Users that are interested in CodeCave are comparing it to the libraries listed below
- Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…☆176Updated last year
- Malware?☆69Updated 5 months ago
- ☆120Updated last year
- This project is an implant framework designed for long term persistent access to Windows machines.☆111Updated last year
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆92Updated 11 months ago
- Splitting and executing shellcode across multiple pages☆99Updated last year
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆256Updated 5 months ago
- Do some DLL SideLoading magic☆79Updated last year
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 7 months ago
- Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)☆141Updated 11 months ago
- Implementing the ghostly hollowing PE injection technique using tampered syscalls.☆138Updated this week
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆87Updated 8 months ago
- ☆115Updated last year
- ☆134Updated last year
- ☆148Updated last year
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆118Updated this week
- Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctype…☆112Updated last year
- reflectively load and execute PEs locally and remotely bypassing EDR hooks☆151Updated last year
- BOF with Synthetic Stackframe☆137Updated 2 weeks ago
- A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…☆157Updated 9 months ago
- Construct the payload at runtime using an array of offsets☆62Updated 8 months ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆147Updated last year
- ApexLdr is a DLL Payload Loader written in C☆109Updated 7 months ago
- Your syscall factory☆120Updated last week
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆96Updated last year
- Patch AMSI and ETW in remote process via direct syscall☆81Updated 2 years ago
- Simple BOF to read the protection level of a process☆114Updated last year
- ☆148Updated 3 months ago
- Find DLLs with RWX section☆76Updated last year
- Windows Kernel Offensive Toolset☆119Updated 6 months ago