Stuuxx / awesome-persistence

Related projects: ⓘ

• D1rkMtr / sysPPIDspoofing
  ☆24Updated this week
• lem0nSec / ASM_World
  Offensive Assembly code snippets.
  ☆10Updated last year
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆34Updated 2 years ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 2 years ago
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆50Updated last year
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated last year
• Nariod / Tartocitron
  Tartocitron is a repo to have fun with malwares and the Rust language. This repo provides working examples of dropper written in Rust.
  ☆9Updated 2 years ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆16Updated last year
• D1rkMtr / Internals_Exploring
  ☆14Updated this week
• Helixo32 / DetectHooks
  Detect userland hooks placed by AV/EDR
  ☆27Updated last year
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆23Updated 6 months ago
• susMdT / fictional-invention
  idk man this was the default github name
  ☆35Updated last year
• lleon1435 / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆14Updated last year
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆20Updated this week
• eversinc33 / RDPassSpray
  Python3 tool to perform password spraying using RDP
  ☆16Updated last year
• EgeBalci / syscall_api
  ☆36Updated last year
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆30Updated 10 months ago
• rbmm / SC
  shell code example
  ☆10Updated 3 weeks ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆50Updated 3 months ago
• b4rth0v5k1 / EarlyBirdNTDLL
  ☆33Updated last year
• Sh3lldon / WinPWN
  This repo for Windows x32-x64 Kernel/Driver/User Mode Exploitation writeups and exploits
  ☆22Updated 4 months ago
• FuzzySecurity / SAFACon-Vienna
  ☆19Updated 4 months ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆23Updated 10 months ago
• Bl4ckM1rror / PEAs
  ☆57Updated 9 months ago
• rbmm / Services
  ☆17Updated last year
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆51Updated last year
• rbmm / Hollowed-Process
  ☆24Updated 5 months ago
• 0xf00sec / DLLProxying-rs
  a simple implementation of Proxy-DLL-Loads in Rust
  ☆18Updated 7 months ago
• AlSch092 / ModifyExports
  Research of modifying exported function names at runtime (C/C++, Windows)
  ☆16Updated 3 months ago
• SaadAhla / VT-stealer
  VirusTotal Stealer is a DATA Exfiltration tool that exfitrate office documents and tunnel them over VirusTotal API to the Team Server
  ☆62Updated 11 months ago