CyberSecurityUP / ProcessKiller-BYOVD
BYOVD Technique Example using viragt64 driver
☆38Updated 9 months ago
Alternatives and similar repositories for ProcessKiller-BYOVD:
Users that are interested in ProcessKiller-BYOVD are comparing it to the libraries listed below
- Windows AppLocker Driver (appid.sys) LPE☆55Updated 8 months ago
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆22Updated 11 months ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆36Updated last year
- Reimplementation of the KExecDD DSE bypass technique.☆47Updated 7 months ago
- e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!☆24Updated 8 months ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆44Updated last year
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆23Updated last year
- A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user☆39Updated 8 months ago
- API Hammering with C++20☆46Updated 2 years ago
- Artemis - C++ Hell's Gate Syscall Implementation☆32Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 3 years ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆62Updated last year
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆37Updated last week
- Unhook Ntdll.dll, Go & C++.☆21Updated this week
- ☆36Updated 2 years ago
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆41Updated last year
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆48Updated 3 months ago
- ForsHops☆41Updated last month
- ☆54Updated 6 months ago
- Section-based payload obfuscation technique for x64☆59Updated 8 months ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆45Updated last year
- A simple C++ Windows tool to get information about processes exposing named pipes.☆37Updated last month
- Exploiting the KsecDD Windows driver through Server Silos☆66Updated 5 months ago
- the Open Source and Pure C++ Packer for eXecutables☆20Updated 2 years ago
- A more reliable way of resolving syscall numbers in Windows☆49Updated last year
- Create Anti-Copy DRM Malware☆55Updated 8 months ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆82Updated last year
- C# API for Nidhogg rootkit☆17Updated last year
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆63Updated 3 months ago
- Callstack spoofing using a VEH because VEH all the things.☆21Updated last month