EyeOfRa / WinConMon
Windows Console Monitoring
☆98Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for WinConMon
- A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…☆114Updated 7 years ago
- CAPE monitor DLLs☆38Updated 4 years ago
- A process overwriting its own PEB to make an illusion that it has been loaded from a different path.☆92Updated 3 years ago
- PoC for detecting and dumping code injection (built and extended on UnRunPE)☆54Updated 6 years ago
- C++☆79Updated 8 years ago
- DLL Injection Library & Tools☆70Updated 8 years ago
- a program to detect reflective dll injection on a live machine☆74Updated 8 years ago
- A slightly stripped down version of RID (an exercise in learning python C-Types...some of it is a little rushed/sloppy) and a stripped do…☆52Updated 12 years ago
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆93Updated 6 years ago
- Load a Windows Kernel Driver☆90Updated 7 years ago
- ☆73Updated 6 years ago
- A simple API monitor for Windbg☆62Updated 7 years ago
- Process Doppelgänging☆154Updated 6 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆59Updated 8 years ago
- public bugs/proof of concepts☆47Updated 3 years ago
- kernel exploitation helper class☆75Updated 7 years ago
- An attempt at Process Doppelgänging☆183Updated 6 years ago
- ☆112Updated 8 years ago
- A command tree based on commands and extensions for Windows Kernel Debugging.☆105Updated 4 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆117Updated 4 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 9 years ago