WKL-Sec / FuncAddressPro
A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
☆72Updated last year
Alternatives and similar repositories for FuncAddressPro:
Users that are interested in FuncAddressPro are comparing it to the libraries listed below
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆88Updated 9 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 7 months ago
- Malware?☆69Updated 5 months ago
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆42Updated 8 months ago
- Splitting and executing shellcode across multiple pages☆100Updated last year
- Construct the payload at runtime using an array of offsets☆63Updated 9 months ago
- Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar☆129Updated 7 months ago
- "Service-less" driver loading☆148Updated 3 months ago
- LKM rootkit for modern kernels, with DNS C2 and a simple web interface☆64Updated 2 weeks ago
- Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…☆176Updated last year
- ☆121Updated last year
- ☆52Updated 2 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆72Updated last month
- ☆98Updated last year
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆44Updated last year
- Bypass LSA protection using the BYODLL technique☆155Updated 6 months ago
- Tool for playing with Windows Access Token manipulation.☆54Updated 2 years ago
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆59Updated last year
- stack spoofing☆80Updated 4 months ago
- Shellcode Loader Utilizing ETW Events☆60Updated 3 weeks ago
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆106Updated last year
- ☆25Updated 3 months ago
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆59Updated last year
- Template-based generation of shellcode loaders☆76Updated 11 months ago
- A collection of position independent coding resources☆67Updated last month
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆78Updated last year
- Shellcode loader☆77Updated 4 months ago
- ☆96Updated 2 months ago
- Sleep Obfuscation☆43Updated 2 years ago
- Do some DLL SideLoading magic☆79Updated last year