Unprotect-Project / FuncInEvasionTechniqueDemo
☆30Updated 10 months ago
Related projects ⓘ
Alternatives and complementary repositories for FuncInEvasionTechniqueDemo
- ☆26Updated 11 months ago
- Self delete DLL (2)☆14Updated 8 months ago
- Windows AppLocker Driver (appid.sys) LPE☆35Updated 3 months ago
- API Hammering with C++20☆34Updated 2 years ago
- Extension functionality for the NightHawk operator client☆26Updated last year
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆32Updated last year
- ☆34Updated last year
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆21Updated last month
- Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…☆30Updated last year
- ☆35Updated 2 weeks ago
- A method to execute shellcode using RegisterWaitForInputIdle API.☆51Updated last year
- ☆21Updated 6 months ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆34Updated last year
- ☆25Updated 3 weeks ago
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆37Updated 10 months ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated last year
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆30Updated last year
- Creation and removal of Defender path exclusions and exceptions in C#.☆30Updated last year
- Just another Process Injection using Process Hollowing technique.☆16Updated last year
- ☆18Updated last month
- ☆12Updated last year
- ☆12Updated 2 years ago
- Modify managed functions from unmanaged code☆49Updated 9 months ago
- Sleep obfuscation☆47Updated this week
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆24Updated last year
- A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…☆22Updated last year
- Collect Windows telemetry for Maldev☆36Updated this week
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆51Updated last year