CyberCX-STA / PeepLinks
A tool designed to hook into Windows applications and output named (and anonymous?) pipe traffic.
☆13Updated last year
Alternatives and similar repositories for Peep
Users that are interested in Peep are comparing it to the libraries listed below
Sorting:
- A simple Linux in-memory .so loader☆30Updated 2 years ago
- Payload Obfuscation for Red Teams workshop materials☆53Updated 2 months ago
- various methods of making API calls☆19Updated 7 months ago
- ☆25Updated 7 months ago
- A more reliable way of resolving syscall numbers in Windows☆53Updated last year
- RunPE adapted for x64 and written in C, does not use RWX☆27Updated last year
- An example of COM hijacking using a proxy DLL.☆38Updated 4 years ago
- really ?☆12Updated last year
- Callstack spoofing using a VEH because VEH all the things.☆23Updated 5 months ago
- ☆12Updated 2 years ago
- Load a dynamic library from memory using a fuse mount☆31Updated last year
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆26Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 3 years ago
- ☆49Updated 5 months ago
- A bunch of shenanigans using functions, VEH and more☆34Updated 2 months ago
- ☆35Updated 4 months ago
- ☆32Updated last year
- A work in progress BOF/COFF loader in Rust☆51Updated 2 years ago
- Hooked create process injection for meterpreter☆23Updated 4 years ago
- ☆23Updated last year
- BOF and C++ implementation of the Windows Defender sandboxing technique described by Elastic Security Labs/Gabriel Landau.☆24Updated 2 years ago
- Small tool to play with IOCs caused by Imageload events☆42Updated 2 years ago
- example using NtCreateUserProcess in rust☆19Updated 7 months ago
- ☆17Updated last year
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆40Updated 2 years ago
- ☆31Updated 8 months ago
- ☆55Updated 2 years ago
- Self Delete DLL☆23Updated last year
- Fuzzing Harness and Unpatched Crash Results from Fuzzing Defender MpEngine☆30Updated last month
- An In-memory Embedding of CPython☆30Updated 4 years ago