S3cur3Th1sSh1t / SharpUnhookerView external linksLinks
C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)
☆25Mar 7, 2023Updated 2 years ago
Alternatives and similar repositories for SharpUnhooker
Users that are interested in SharpUnhooker are comparing it to the libraries listed below
Sorting:
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆35Nov 24, 2024Updated last year
- AmsiScanBufferBypass using D/Invoke☆136Jun 17, 2021Updated 4 years ago
- Find kernel32 base and API addresses. Simple C++ implementation☆24Apr 7, 2022Updated 3 years ago
- RDPThief donut shellcode inject into mstsc☆88May 24, 2021Updated 4 years ago
- ☆24Feb 1, 2025Updated last year
- C# binary with embeded golang hack-browser-data☆100Dec 9, 2021Updated 4 years ago
- Experiments on the Windows Internals☆31Sep 22, 2019Updated 6 years ago
- This repository will contain source codes from the Tradecraft improvement blog series☆14Mar 27, 2025Updated 10 months ago
- ☆13Jul 30, 2021Updated 4 years ago
- Process injection via KernelCallbackTable☆13Jan 28, 2022Updated 4 years ago
- ☆31Jan 22, 2026Updated 3 weeks ago
- Automatic DLL comment link generation and explaination of the DLL Proxying techniques☆10Aug 19, 2021Updated 4 years ago
- all random stuff that dont warrant a seperate repo☆12Sep 2, 2022Updated 3 years ago
- ps-like .NET Assembly for enumerating processes on the current machine or a remote machine.☆13Aug 12, 2019Updated 6 years ago
- ☆362Apr 24, 2021Updated 4 years ago
- AMSI detection PoC☆31Apr 14, 2020Updated 5 years ago
- ☆48Jun 6, 2025Updated 8 months ago
- ☆61Dec 19, 2024Updated last year
- Resolve WinAPI func. Custom GetProcAddress and GetModuleHandle written in Nim☆32Jun 2, 2021Updated 4 years ago
- Secretsdump C# version only supporting local (live) operation☆55Apr 20, 2025Updated 9 months ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33May 30, 2024Updated last year
- ☆16Oct 30, 2022Updated 3 years ago
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆18Jun 1, 2024Updated last year
- ☆39Mar 28, 2025Updated 10 months ago
- Automating payload generation for OSEP labs and exam.☆34Jun 30, 2022Updated 3 years ago
- ☆19Sep 17, 2025Updated 4 months ago
- ☆18Sep 1, 2025Updated 5 months ago
- A tool to enumerate and download files from the System Center Configuration Manager (SCCM) SMB share (SCCMContentLib)☆16Jul 27, 2024Updated last year
- Configurable, Community driven, HTTP C2 Profile☆27May 30, 2025Updated 8 months ago
- Find world writable directories that contain a .exe or .dll file☆13Aug 31, 2021Updated 4 years ago
- Lightweight File Integrity Monitoring Tool☆33Apr 20, 2024Updated last year
- Just another ntdll unhooking using Parun's Fart technique☆76Feb 15, 2023Updated 2 years ago
- ☆13Jul 15, 2021Updated 4 years ago
- My experiments in weaponizing Nim (https://nim-lang.org/)☆17Mar 1, 2023Updated 2 years ago
- PoC script to demonstrate collection of SCCM attack paths that can be viewed in BH with OpenGraph☆24Aug 2, 2025Updated 6 months ago
- Command Augmentation support for BOFs and .NET assemblies across agents☆38Jan 12, 2026Updated last month
- Simple HTTP async comms using standard GET/POST requests☆46Feb 5, 2026Updated last week
- Dangling COM Keys Finder☆17Nov 16, 2021Updated 4 years ago
- 7 days of Red Teaming TTPs that your favorite tools may use to acheive a post exploitation goal☆18Apr 17, 2021Updated 4 years ago