S12cybersecurity / FreeThreadHijacking
Perform Thread Hijacking Shellcode Injection without OpenProcess and OpenThread mapping all the free handles in memory
☆12Updated 9 months ago
Alternatives and similar repositories for FreeThreadHijacking:
Users that are interested in FreeThreadHijacking are comparing it to the libraries listed below
- My Own VirtualAlloc Implementation to use as alternative unknown for all the defense solutions of VirtualAlloc Win32 API Function☆8Updated last year
- Linux Malware creator to attack Windows System via Reverse Shell with FindWindow Process Code Injection☆17Updated 2 years ago
- Collection of Win32 with C++/Assembly for Hooking, Patch and Reversing PE file☆12Updated 2 years ago
- C++ Class with various techniques to detect the execution in a virtualized environment☆12Updated 10 months ago
- using the Recycle Bin to insure persistence☆12Updated 2 years ago
- PDF Icon File Type Spoofer☆14Updated 9 months ago
- Hooking Heavens Gate in a weekend☆13Updated 3 years ago
- Research of modifying exported function names at runtime (C/C++, Windows)☆17Updated 10 months ago
- Using Thread Description To Hide Shellcodes☆14Updated 2 years ago
- C++ Privilege Escalation Class to execute Process As Admin from User and Process as NT AUTHORITY SYSTEM from Admin☆21Updated last year
- Change hash for a signed pe☆16Updated last year
- Simple C++ Reverse Shell☆11Updated 2 years ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆27Updated 8 months ago
- C++ keylogger to save all the keys pressed into a local txt file☆9Updated 2 years ago
- Classic Process Injection with Memory Evasion Techniques implemantation☆69Updated last year
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆20Updated 2 months ago
- How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.☆13Updated last month
- Kernel pointers copied to output user mode buffer with ioctl 0x22A014 in the appid.sys driver.☆9Updated 9 months ago
- An example of Windows self-replicating malware.☆10Updated 2 years ago
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆31Updated 10 months ago
- Utilizing Alternative Shellcode Execution Via Callbacks☆13Updated last year
- Callstack spoofing using a VEH because VEH all the things.☆21Updated last month
- Implementation of ITaskHandler in C++☆13Updated 2 years ago
- Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.☆19Updated 2 years ago
- the Open Source and Pure C++ Packer for eXecutables☆20Updated 2 years ago
- ☆21Updated 11 months ago
- Post-Exploitation Tool to Steal MySQL Data, and with persistence extract all data from MySQL table every time that Windows are opened wit…☆10Updated 2 years ago
- Malware Libraries focused in help Malware Development☆18Updated 2 years ago
- ☆12Updated last year
- PoC for the Untrusted Pointer Dereference in the appid.sys driver☆16Updated last year