Stuuxx / awesome-persistenceLinks
Persistence techniques for windows.
☆19Updated 2 years ago
Alternatives and similar repositories for awesome-persistence
Users that are interested in awesome-persistence are comparing it to the libraries listed below
Sorting:
- Tartocitron is a repo to have fun with malwares and the Rust language. This repo provides working examples of dropper written in Rust.☆10Updated 3 years ago
- A payload delivery system which embeds payloads in an executable's icon file!☆74Updated last year
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated 2 years ago
- Tool for obtaining information about PPL processes☆17Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 3 years ago
- ☆30Updated last week
- idk man this was the default github name☆35Updated 2 years ago
- ☆59Updated last year
- EvtPsst☆55Updated last year
- API Hammering with C++20☆49Updated 3 years ago
- Just another Process Injection using Process Hollowing technique.☆18Updated last year
- A collection of PoCs for different injection techniques on Windows!☆45Updated 2 years ago
- Python3 tool to perform password spraying using RDP☆17Updated 2 years ago
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆41Updated 2 years ago
- ☆37Updated 2 years ago
- ☆18Updated 7 months ago
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆43Updated last year
- Make an Linux Kernel rootkit visible again.☆55Updated 6 months ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆25Updated 4 months ago
- Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…☆15Updated last year
- Demoting PPL anti-malware services to less than a guest user☆64Updated 7 months ago
- BYOVD Technique Example using viragt64 driver☆49Updated last year
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆78Updated last year
- DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable☆57Updated last year
- ☆36Updated last year
- ☆16Updated 3 months ago
- ☆20Updated this week
- miscellaneous codes☆35Updated last year
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆26Updated last year