CyberSecurityUP / SyscallHookDetectorLinks
☆18Updated 11 months ago
Alternatives and similar repositories for SyscallHookDetector
Users that are interested in SyscallHookDetector are comparing it to the libraries listed below
Sorting:
- Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…☆42Updated 11 months ago
- quASAR: ASAR manipulation made easy☆38Updated 3 years ago
- Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers☆124Updated last year
- Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation☆31Updated 2 years ago
- Golang bindings for PE-sieve☆42Updated last year
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆86Updated 2 months ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆66Updated 3 years ago
- A repo to house files for our blogposts on blog.nviso.eu☆73Updated 6 months ago
- Windows internals and exploitation tricks☆105Updated 3 months ago
- PoCs and technical analysis of three vulnerabilities found on Cisco AnyConnect for Windows: CVE-2020-3433, CVE-2020-3434 and CVE-2020-343…☆43Updated 4 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆39Updated 3 years ago
- A payload delivery system which embeds payloads in an executable's icon file!☆74Updated last year
- This repo hosts a poc of how to execute F# code within an unmanaged process☆68Updated last year
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆41Updated 2 years ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆65Updated last year
- ☆60Updated last year
- Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.☆60Updated 3 years ago
- Repo containing my public talks☆23Updated 2 years ago
- This is a simple example of DLL hijacking enabling proxy execution.☆66Updated 2 years ago
- Inject shellcode into a valid BMP/GIF image.☆30Updated 5 years ago
- A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously☆31Updated 2 years ago
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆87Updated 8 months ago
- DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable☆57Updated last year
- Firefox webInjector capable of injecting codes into webpages using a mitmproxy.☆42Updated 2 years ago
- Collection of Rust repos useful for Red Teamers.☆34Updated 2 years ago
- A PoC for achieving persistence via push notifications on Windows☆47Updated 2 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆57Updated 2 years ago
- ☆74Updated 2 years ago
- ☆108Updated 10 months ago
- IAT Unhooking proof-of-concept☆30Updated last year