WhiteOakSecurity / MiniDumpDotNet
☆16Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for MiniDumpDotNet
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆38Updated last year
- Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation☆29Updated 2 years ago
- Python3 rewrite of AsOutsider features of AADInternals☆36Updated 2 months ago
- ☆58Updated 10 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated 4 months ago
- Simple BOF to read the protection level of a process☆104Updated last year
- RDLL for Cobalt Strike beacon to silence sysmon process☆85Updated 2 years ago
- Just another ntdll unhooking using Parun's Fart technique