S12cybersecurity / FreeThreadHijackingLinks
Perform Thread Hijacking Shellcode Injection without OpenProcess and OpenThread mapping all the free handles in memory
☆16Updated last year
Alternatives and similar repositories for FreeThreadHijacking
Users that are interested in FreeThreadHijacking are comparing it to the libraries listed below
Sorting:
- Evasive shellcode loader with indirect syscalls, Thread name-calling allocation, PoolParty injection☆10Updated 11 months ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆26Updated 9 months ago
- stack based buffer overflow in MsIo64.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆12Updated 4 years ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆15Updated 9 months ago
- Listing UDP connections with remote address without sniffing.☆31Updated 2 years ago
- Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM☆62Updated 2 years ago
- Standalone Metasploit-like XOR encoder for shellcode☆50Updated last year
- Classic Process Injection with Memory Evasion Techniques implemantation☆72Updated 2 years ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆81Updated 7 months ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆43Updated last year
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Updated last year
- using the gpu to hide your payload☆63Updated 3 years ago
- PhantomDelay is a precise delay function that uses the Windows high resolution performance counter to pause your program for a specified …☆18Updated 8 months ago
- Shellcodev is a tool designed to help and automate the process of shellcode creation.☆112Updated 2 years ago
- BYOVD Technique Example using viragt64 driver☆67Updated last year
- 💻 Windows 10 Kernel-mode rootkit☆32Updated 3 years ago
- Next gen process injection technique☆54Updated 5 years ago
- Change hash for a signed pe☆17Updated 2 years ago
- ☆28Updated last year
- Reimplementation of the KExecDD DSE bypass technique.☆57Updated last year
- This program is used to perform reflective DLL Injection to a remote process specified by the user.☆65Updated 2 years ago
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆13Updated 2 years ago
- A unique introduction to native runtime obfuscation.☆74Updated 10 months ago
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆33Updated last year
- Mockingjay Process Injection Vulnerable DLL Finder☆19Updated 2 years ago
- C\C++ Ransomware example using RSA and AES-128 with BCrypt library on Windows☆19Updated 3 years ago
- Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …☆12Updated 9 months ago
- Signature finder (from PE-bear)☆39Updated 5 months ago
- Windows kernel☆12Updated 5 years ago
- Research into removing strings & API call references at compile-time (Anti-Analysis)☆28Updated last year