WKL-Sec / LayeredSyscall

Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR hooks in Windows.
239Updated 7 months ago

Alternatives and similar repositories for LayeredSyscall:

Users that are interested in LayeredSyscall are comparing it to the libraries listed below