SpecterOps / ipc-research
Inter-Process Communication Mechanisms
☆24Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for ipc-research
- ☆79Updated 2 years ago
- ☆58Updated 2 years ago
- A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯☆39Updated 3 years ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆28Updated 2 years ago
- A work in progress BOF/COFF loader in Rust☆45Updated last year
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆38Updated last year
- Enabled / Disable LSA Protection via BYOVD☆62Updated 2 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 3 years ago
- Load a dynamic library from memory using a fuse mount☆29Updated last year
- ☆67Updated last year
- ☆82Updated 2 years ago
- ☆14Updated 2 years ago
- A small commented POC for removing API hooks placed by AV/EDR.☆33Updated 4 years ago
- ☆38Updated last year
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)☆45Updated last month
- 64bit WIndows 10 shellcode dat pops dat calc - Dynamic & Null Free☆58Updated last year
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆53Updated 2 years ago
- ☆54Updated 3 years ago
- A Poc on blocking Procmon from monitoring network events☆98Updated 2 years ago
- A PoC for adding NtContinue to CFG allowed list in order to make Ekko work in a CFG protected process☆87Updated 2 years ago
- A *very* imperfect attempt to correlate Kernel32 function calls to native API (Nt/Zw) counterparts/execution flow.☆26Updated 2 years ago
- Repo that holds random POCs☆45Updated 10 months ago
- Recreating and reviewing the Windows persistence methods☆39Updated 3 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions☆50Updated 2 years ago