NUL0x4C / FetchPayloadFromDummyFileLinks
Construct the payload at runtime using an array of offsets
☆63Updated last year
Alternatives and similar repositories for FetchPayloadFromDummyFile
Users that are interested in FetchPayloadFromDummyFile are comparing it to the libraries listed below
Sorting:
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 10 months ago
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆98Updated 2 months ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Impersonate Tokens using only NTAPI functions☆75Updated 2 months ago
- Section-based payload obfuscation technique for x64☆61Updated 10 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆82Updated 4 months ago
- ☆113Updated 5 months ago
- ☆125Updated 9 months ago
- Create Anti-Copy DRM Malware☆58Updated 10 months ago
- ☆97Updated 9 months ago
- ☆107Updated 4 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆93Updated last month
- ☆125Updated last year
- Do some DLL SideLoading magic☆84Updated last year
- ☆62Updated 5 months ago
- I have documented all of the AMSI patches that I learned till now☆72Updated 2 months ago
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion☆84Updated 2 months ago
- ☆155Updated 6 months ago
- ☆110Updated 5 months ago
- Windows Thread Pool Injection Havoc Implementation☆30Updated last year
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆97Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe