ViperXSecurity / lib-nosaLinks
lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
☆110Updated 8 months ago
Alternatives and similar repositories for lib-nosa
Users that are interested in lib-nosa are comparing it to the libraries listed below
Sorting:
- MIPS VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator.☆115Updated 5 months ago
- "Service-less" driver loading☆155Updated 6 months ago
- ☆106Updated 4 months ago
- Malware?☆70Updated 7 months ago
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆42Updated 10 months ago
- Splitting and executing shellcode across multiple pages☆103Updated last year
- Find DLLs with RWX section☆81Updated last year
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆120Updated last year
- Slides for COM Hijacking AV/EDR Talk on 38c3☆74Updated 5 months ago
- IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.☆101Updated last year
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆77Updated 3 months ago
- A Mythic Agent written in PIC C.☆189Updated 4 months ago
- ☆106Updated 7 months ago
- ☆136Updated last year
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆93Updated last year
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆63Updated last month
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆105Updated 2 years ago
- A bunch of scripts and code i wrote.☆141Updated 6 months ago
- Admin to Kernel code execution using the KSecDD driver☆250Updated last year
- ☆55Updated last month
- An example reference design for a proposed BOF PE☆168Updated last month
- Injecting DLL into LSASS at boot☆113Updated last month
- Local & remote Windows DLL Proxying☆164Updated 11 months ago
- A collection of position independent coding resources☆78Updated 3 months ago
- shell code example☆49Updated 2 weeks ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆264Updated 8 months ago
- ☆155Updated 5 months ago
- Bypass LSA protection using the BYODLL technique☆161Updated 8 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆99Updated 3 weeks ago
- ☆61Updated last year