CyberSecurityUP / Offensive-Windows-Drivers-DevelopmentLinks
☆161Updated 7 months ago
Alternatives and similar repositories for Offensive-Windows-Drivers-Development
Users that are interested in Offensive-Windows-Drivers-Development are comparing it to the libraries listed below
Sorting:
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆155Updated 2 months ago
- ☆157Updated 4 months ago
- Obex – Blocking unwanted DLLs in user mode☆250Updated last month
- C# AV/EDR Killer using less-known driver (BYOVD)☆180Updated last year
- A PoC for Early Cascade process injection technique.☆198Updated 8 months ago
- Generate an Alphabetical Polymorphic Shellcode☆127Updated 2 months ago
- This comprehensive and central repository is designed for cybersecurity enthusiasts, researchers, and professionals seeking to stay ahead…☆132Updated 5 months ago
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆203Updated 7 months ago
- Dynamic shellcode loader with sophisticated evasion capabilities☆207Updated 3 weeks ago
- The different ways to dump lsass☆193Updated 2 months ago
- Injecting DLL into LSASS at boot☆142Updated 5 months ago
- Convert your shellcode into an ASCII string☆123Updated 4 months ago
- kernel callback removal (Bypassing EDR Detections)☆195Updated 7 months ago
- BSides Prishtina 2024 Malware Development and Persistence workshop☆102Updated 4 months ago
- Stage 0☆164Updated 10 months ago
- My projects to understand malware development and detection. Use responsibly. I'm not responsible if you cause unauthorised damage to any…☆95Updated 4 months ago
- Shellcode encryptor using a substitution cipher with a randomly generated key.☆140Updated 9 months ago
- Ghosting-AMSI☆219Updated 6 months ago
- Enumerate active EDR's on the system☆139Updated last month
- RunPE implementation with multiple evasive techniques☆220Updated last month
- Remote DLL Injection with Timer-based Shellcode Execution☆146Updated 3 months ago
- Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks☆128Updated 10 months ago
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆153Updated last year
- early cascade injection PoC based on Outflanks blog post☆232Updated 11 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆166Updated 6 months ago
- Bypass user-land hooks by syscall tampering via the Trap Flag☆127Updated 2 months ago
- Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…☆89Updated 6 months ago
- Bypass Credential Guard by patching WDigest.dll using only NTAPI functions☆255Updated 6 months ago
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆284Updated 2 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆209Updated last year