Kudaes / ShelterLinks
ROP-based sleep obfuscation to evade memory scanners
☆359Updated 2 months ago
Alternatives and similar repositories for Shelter
Users that are interested in Shelter are comparing it to the libraries listed below
Sorting:
- Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)☆347Updated last year
- Threadless Process Injection through entry point hijacking☆348Updated 11 months ago
- A COFF loader made in Rust☆306Updated 10 months ago
- Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.☆295Updated 2 months ago
- .NET assembly loader with patchless AMSI and ETW bypass☆350Updated 2 years ago
- Using fibers to run in-memory code.☆217Updated last year
- Exploitation of process killer drivers☆202Updated last year
- Call stack spoofing for Rust☆340Updated 6 months ago
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆253Updated last year
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …☆279Updated last year
- Dynamically invoke arbitrary unmanaged code☆349Updated 9 months ago
- Reuse open handles to dynamically dump LSASS.☆246Updated last year
- Some POCs for my BYOVD research and find some vulnerable drivers☆319Updated last month
- ☆260Updated last year
- ☆195Updated last year
- A beacon object file implementation of PoolParty Process Injection Technique.☆405Updated last year
- Waiting Thread Hijacking - injection by overwriting the return address of a waiting thread☆233Updated 2 months ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆354Updated 6 months ago
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.☆289Updated last year
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆319Updated last year
- Reflective DLL Injection Made Bella☆234Updated 7 months ago
- Encrypted shellcode Injection to avoid Kernel triggered memory scans☆386Updated last year
- Use hardware breakpoint to dynamically change SSN in run-time☆266Updated last year
- Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime☆307Updated 2 years ago
- BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…☆384Updated last year
- Collect Windows telemetry for Maldev☆405Updated this week
- A Beacon Object File (BOF) template for Visual Studio☆240Updated 2 weeks ago
- An example reference design for a proposed BOF PE☆186Updated 4 months ago
- Lateral Movement Using DCOM and DLL Hijacking☆304Updated 2 years ago
- Shaco is a linux agent for havoc☆165Updated last year