EgeBalci / crc32_apiLinks
Assembly API block that uses CRC32 for resolving Windows API function addresses
☆17Updated 2 years ago
Alternatives and similar repositories for crc32_api
Users that are interested in crc32_api are comparing it to the libraries listed below
Sorting:
- Unpacker for donut shellcode☆17Updated 5 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆56Updated 2 years ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆29Updated 3 years ago
- Released presentations of my talks + code that used during these talks☆14Updated 9 months ago
- Remote PE reflective injection with a simple reflective loader☆31Updated 5 years ago
- A kernel mode Windows rootkit in development.☆49Updated 3 years ago
- ☆54Updated 2 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 2 years ago
- A simple Linux in-memory .so loader☆30Updated 2 years ago
- POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…☆40Updated 3 years ago
- Yet another Windows DLL injector.☆39Updated 3 years ago
- A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.☆40Updated 4 years ago
- ☆25Updated 2 years ago
- ☆62Updated 3 years ago
- Clone running process with ZwCreateProcess☆57Updated 4 years ago
- A few examples of how to trap virtual memory access on Windows.☆31Updated 6 months ago
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆56Updated 2 years ago
- Non organized Cpp code files I used for my research on Windows☆25Updated 4 years ago
- ☆37Updated 2 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- ☆15Updated 4 years ago
- ☆21Updated last year
- Inter-Process Communication Mechanisms☆28Updated 4 years ago
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆26Updated last year
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆23Updated 5 years ago
- Windows PDB Parser using Imagehlp library.☆16Updated 2 years ago
- WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs☆18Updated last year
- Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules☆42Updated 2 years ago
- ☆18Updated 4 years ago
- Process Injection: APC Injection☆33Updated 4 years ago