PaddyCahil / windows-api-function-cheatsheetsLinks
A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization, interprocess communication, Unicode string manipulation, error handling, Winsock networking operations, and registry operations.
☆119Updated 2 years ago
Alternatives and similar repositories for windows-api-function-cheatsheets
Users that are interested in windows-api-function-cheatsheets are comparing it to the libraries listed below
Sorting:
- ☆41Updated last year
- Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process☆285Updated 2 years ago
- This repository implements Threadless Injection in C☆172Updated 2 years ago
- Payload encoding utility to effectively lower payload entropy.☆123Updated 9 months ago
- Create Anti-Copy DRM Malware☆71Updated last year
- Sleep obfuscation☆264Updated last year
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆182Updated 2 years ago
- ☆259Updated 6 months ago
- Windows Persistence IT-Security☆109Updated 10 months ago
- Two tools written in C that block network traffic for blacklisted EDR processes, using either Windows Defender Firewall (WDF) or Windows …☆256Updated 4 months ago
- ☆163Updated 2 years ago
- Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)☆79Updated last year
- Execute shellcode files with rundll32☆214Updated 2 years ago
- ( 0day ) Local Privilege Escalation in IObit Malware Fighter☆164Updated 9 months ago
- Reflective DLL Injection Made Bella☆248Updated last year
- Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)☆144Updated last year
- A robust Windows Process Executable Packer and Launcher implementation written in Rust for Windows x64 systems.☆40Updated last year
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.☆288Updated last year
- Basic interactive Windows kernel offensive toolkit written in C☆135Updated 4 months ago
- Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...☆169Updated last year
- My projects to understand malware development and detection. Use responsibly. I'm not responsible if you cause unauthorised damage to any…☆109Updated 7 months ago
- ☆259Updated 2 years ago
- Remote Shellcode Injector☆221Updated 2 years ago
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆139Updated last year
- Windows rootkit designed to work with BYOVD exploits☆211Updated last year
- A POC to disable TamperProtection and other Defender / MDE components☆253Updated last year
- Smart keylogging capability to steal SSH Credentials including password & Private Key☆151Updated 10 months ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆404Updated 2 weeks ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆85Updated 2 years ago
- A simple Sleepmask BOF example☆167Updated 2 months ago