Sentinel-One / minhook

Related projects: ⓘ

• realoriginal / doublepulsar-poc
  ☆44Updated this week
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆58Updated 8 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆39Updated 8 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 6 years ago
• deroko / activationcontexthook
  ☆33Updated 6 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆25Updated 7 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆50Updated 5 years ago
• sam-b / HackSysDriverExploits
  ☆46Updated 7 years ago
• zerosum0x0 / ShellcodeDriver
  ☆81Updated this week
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆45Updated 5 years ago
• 1ce0ear / DllLoaderUnpacker
  ☆30Updated this week
• gcoinman / atom-bombing-
  Brand New Code Injection for Windows https://breakingmalware.com/injection-techniques/atombombing-brand-new-code-injection-for-windows
  ☆19Updated 7 years ago
• 0xAlexei / Publications
  My conference presentations and publications
  ☆26Updated 2 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆36Updated 7 years ago
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆52Updated 4 years ago
• hugsy / hevd
  Public repository for HEVD exploits
  ☆20Updated 6 years ago
• dro / uac-launchinf-poc
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆34Updated 6 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆48Updated 4 years ago
• NoviceLive / shellcoding
  Introduce you to shellcode development.
  ☆23Updated 8 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆34Updated 6 years ago
• acru3l / HEVD-exploits
  The place where my HackSys Extreme Vulnerable Driver exploits go.
  ☆25Updated 5 years ago
• k0keoyo / Dark_Composition_case_study_Integer_Overflow
  ☆33Updated this week
• NtRaiseHardError / Dreadnought
  PoC for detecting and dumping code injection (built and extended on UnRunPE)
  ☆54Updated 5 years ago
• tophertimzen / shellcodeTester
  GUI Application in C# to run and disassemble shellcode
  ☆35Updated 7 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 6 years ago
• SouhailHammou / KernelSymbolsHelper
  Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…
  ☆52Updated 5 years ago
• realoriginal / shellcodes
  ☆30Updated this week
• RISCYBusiness / RISCYpacker
  ☆57Updated this week
• ScorchSecurity / Toast
  User-mode hook bypassing method
  ☆32Updated 8 years ago
• int0 / ProcessIsolator
  ☆73Updated 6 years ago