ScorchSecurity / ToastLinks
User-mode hook bypassing method
☆33Updated 9 years ago
Alternatives and similar repositories for Toast
Users that are interested in Toast are comparing it to the libraries listed below
Sorting:
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆33Updated 7 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 8 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 9 years ago
- Class implementation of PowerLoader injection technique☆32Updated 8 years ago
- User-mode part of Zerokit platform☆22Updated 6 years ago
- Simple PE packer with RtlCompressBuffer☆21Updated 9 years ago
- ☆34Updated 7 years ago
- Reflective DLL Injection style process infector☆20Updated 7 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 7 years ago
- ☆16Updated 5 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- ☆19Updated 10 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆32Updated 8 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Updated 8 years ago
- A MITM proxy server for reflective DLL injection through WinINet☆15Updated 7 years ago
- Kernel-mode file scanner☆18Updated 7 years ago
- Try to transport the tcpip stack of ReactOS to Windows XP.☆17Updated 11 years ago
- Assembly code to use for Windows kernel shellcode to edit winlogon.exe ACL☆13Updated 8 years ago
- ☆14Updated 8 years ago
- ☆18Updated 8 years ago
- Polymorphic Stub Creator☆34Updated 8 years ago
- Windows anti-rootkit library☆37Updated 10 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- Anti-AV compilation☆44Updated 11 years ago
- just an lite AntiRootkit for interesting☆24Updated 9 years ago
- WhoCalls can query a directory of files, find the binaries, and search for a user specified Win API import. It and works with both 32-bit…☆18Updated 3 years ago
- Code injection via delay load libraries☆35Updated 7 years ago
- An API Monitor based on Instrumentation☆43Updated 7 years ago
- HackSys Extreme Vulnerable Driver - Various Windows 7 x86 Kernel Exploits☆22Updated 7 years ago