CyberSecurityUP / SyscallHookDetectorLinks
☆17Updated 9 months ago
Alternatives and similar repositories for SyscallHookDetector
Users that are interested in SyscallHookDetector are comparing it to the libraries listed below
Sorting:
- Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…☆42Updated 10 months ago
- Windows internals and exploitation tricks☆102Updated last month
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆84Updated 3 weeks ago
- ☆74Updated 2 years ago
- quASAR: ASAR manipulation made easy☆38Updated 2 years ago
- This is a simple example of DLL hijacking enabling proxy execution.☆66Updated 2 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆68Updated last year
- API Hammering with C++20☆50Updated 3 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆39Updated 3 years ago
- Asynchronous RDP/VNC client for Python (GUI)☆71Updated 7 months ago
- Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.☆59Updated 3 years ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆63Updated 3 years ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆64Updated last year
- A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously☆31Updated 2 years ago
- Collection of Rust repos useful for Red Teamers.☆34Updated 2 years ago
- ☆45Updated last year
- Powershell implementation of a novel technique. Invoke-GPTObfuscation is a PowerShell Obfuscator that utilizes OpenAI (and other APIs) to…☆49Updated last year
- Simple and sane cryptographic wrapper library.☆27Updated 2 years ago
- Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers☆123Updated 10 months ago
- A PoC for achieving persistence via push notifications on Windows☆47Updated 2 years ago
- Just another ntdll unhooking using Parun's Fart technique☆75Updated 2 years ago
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆39Updated 3 years ago
- A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80☆20Updated 4 months ago
- A simple PE loader.☆26Updated 2 years ago
- A simple Linux in-memory .so loader☆30Updated 2 years ago
- A repo to house files for our blogposts on blog.nviso.eu☆72Updated 4 months ago
- ☆59Updated last year
- ☆76Updated last year
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆41Updated last year
- Firefox webInjector capable of injecting codes into webpages using a mitmproxy.☆41Updated 2 years ago