XaFF-XaFF / WinREPLLinks
WinREPL is a "read-eval-print loop" shell on Windows that is useful for testing/learning x86 and x64 assembly.
☆17Updated 2 years ago
Alternatives and similar repositories for WinREPL
Users that are interested in WinREPL are comparing it to the libraries listed below
Sorting:
- An Assembly x86 code that shows Windows MessageBox kept as simple as possible.☆11Updated 2 years ago
- Proof of Concept example for abusing Process Hacker 2 (v2.39.124)☆22Updated 7 months ago
- ☆31Updated last year
- One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel☆43Updated last year
- API Hammering with C++20☆46Updated 2 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 3 years ago
- Windows AppLocker Driver (appid.sys) LPE☆62Updated 10 months ago
- ☆30Updated 6 months ago
- Enabled / Disable LSA Protection via BYOVD☆70Updated 3 years ago
- A payload delivery system which embeds payloads in an executable's icon file!☆74Updated last year
- NT AUTHORITY\SYSTEM☆38Updated 4 years ago
- the Open Source and Pure C++ Packer for eXecutables☆21Updated 2 years ago
- Implementation of ITaskHandler in C++☆13Updated 2 years ago
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆26Updated last year
- AIDA64DRIVER Elevation of Privilege Vulnerability☆13Updated 8 months ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆78Updated this week
- Listing UDP connections with remote address without sniffing.☆29Updated last year
- A few examples of how to trap virtual memory access on Windows.☆31Updated 6 months ago
- Standalone Metasploit-like XOR encoder for shellcode☆47Updated last year
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆56Updated 2 years ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆30Updated 10 months ago
- A C++ PoC implementation for enumerating Windows Fibers directly from memory☆19Updated last year
- ☆12Updated last year
- Native Powers Talk demos☆14Updated last year
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆36Updated last year
- Offensive Assembly code snippets.☆12Updated last year
- ☆18Updated 8 months ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆50Updated last year
- call gates as stable comunication channel for NT x86 and Linux x86_64☆32Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago