GrayKernel / GrayFrost
C++ DLL Bootstrapper for spinning up the CLR for C# Payloads
☆42Updated 5 years ago
Related projects: ⓘ
- ☆45Updated 6 years ago
- Clone running process with ZwCreateProcess☆58Updated 3 years ago
- ☆49Updated this week
- Inject .Net payloads into other .Net assemblies on disk☆61Updated 4 years ago
- ☆18Updated 5 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆45Updated 5 years ago
- In memory attack platform for C# Applications☆50Updated 5 years ago
- ☆40Updated this week
- ☆31Updated 7 years ago
- A repository where I share my injection implemintations☆28Updated 4 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 8 years ago
- ☆35Updated 5 years ago
- ☆15Updated 3 years ago
- Process reimaging proof of concept code☆95Updated 5 years ago
- ☆48Updated 4 years ago
- Shim database persistence (Fin7 TTP)☆35Updated 4 years ago
- Resolve syscall numbers at runtime for all Windows versions.☆59Updated 3 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 9 years ago
- A ready-made template for a project based on libpeconv.☆40Updated last year
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 6 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆41Updated 3 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆31Updated 3 years ago
- ☆58Updated this week
- Public repository for HEVD exploits☆20Updated 6 years ago
- ☆31Updated 4 years ago
- Bare template for a Kernel Mode Driver☆50Updated 4 years ago
- A tool to create COM class/interface relationships in neo4j☆47Updated last year