Signal-Labs / Hotpatching_PoC
☆19Updated 2 years ago
Alternatives and similar repositories for Hotpatching_PoC:
Users that are interested in Hotpatching_PoC are comparing it to the libraries listed below
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆28Updated 2 years ago
- ☆21Updated 11 months ago
- really ?☆12Updated last year
- example using NtCreateUserProcess in rust☆18Updated 2 months ago
- A VMWare logger using built-in backdoor.☆27Updated 5 months ago
- ☆23Updated last year
- rust clr heap encryption (https://github.com/lap1nou/CLR_Heap_encryption), but no heap encryption.☆16Updated last year
- ☆20Updated 2 months ago
- A simple Linux in-memory .so loader☆29Updated 2 years ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆31Updated last year
- Extract data of TTD trace file to a minidump☆28Updated last year
- ☆12Updated last year
- ☆52Updated 2 years ago
- Disable PPL via custom driver and dump lsass☆15Updated 4 years ago
- run process as PPL Antimalware☆10Updated last year
- A work in progress BOF/COFF loader in Rust☆47Updated 2 years ago
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆34Updated last year
- Callstack spoofing using a VEH because VEH all the things.☆19Updated 2 weeks ago
- A PoC tool for exploiting leaked process and thread handles☆30Updated last year
- Released presentations of my talks + code that used during these talks☆13Updated 6 months ago
- ☆25Updated last month
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- ☆15Updated last year
- A PE morphing tool that allows you to mimic one executable file to another.☆11Updated last year
- Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD☆26Updated last year
- A rust based DLL injection project☆30Updated 2 years ago
- ELF Beacon Object File (BOF) Template☆18Updated 4 months ago
- Load a dynamic library from memory using a fuse mount☆30Updated last year
- A few examples of how to trap virtual memory access on Windows.☆28Updated 3 months ago
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 2 years ago