ZeroMemoryEx / SleepKiller
Bypass Malware Time Delays
☆100Updated 2 years ago
Alternatives and similar repositories for SleepKiller:
Users that are interested in SleepKiller are comparing it to the libraries listed below
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- Small PoC of using a Microsoft signed executable as a lolbin.☆136Updated 2 years ago
- RDLL for Cobalt Strike beacon to silence sysmon process☆87Updated 2 years ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆81Updated last year
- It's pointy and it hurts!☆124Updated 2 years ago
- Deleting Shadow Copies In Pure C++☆114Updated 2 years ago
- Detect strange memory regions and DLLs☆180Updated 3 years ago
- Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space☆122Updated 2 years ago
- Do some DLL SideLoading magic☆79Updated last year
- Grab Firefox post requests by hooking PR_Write function from nss3.dll module using trampoline hook to get passwords and emails of users☆42Updated 2 years ago
- Infect Shared Files In Memory for Lateral Movement☆194Updated 2 years ago
- ☆133Updated last year
- ☆112Updated 2 years ago
- POC for frustrating/defeating Malware Analysts☆154Updated 2 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆138Updated 2 years ago
- A bunch of scripts and code i wrote.☆135Updated 4 months ago
- Kernel Mode Driver for Elevating Process Privileges☆133Updated 2 years ago
- A Poc on blocking Procmon from monitoring network events☆100Updated 2 years ago
- A small tool I made to dump the export table of PE files. The primary use case was intended for use within DLL proxying.☆69Updated 2 years ago
- Identify and exploit leaked handles for local privilege escalation.☆106Updated last year
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆88Updated 9 months ago
- Experiment on reproducing Obfuscate & Sleep☆142Updated 4 years ago
- Red Team Operation's Defense Evasion Technique.☆52Updated 9 months ago
- I have documented all of the AMSI patches that I learned till now☆74Updated last year
- using the gpu to hide your payload☆56Updated 2 years ago
- ☆78Updated last year
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- Find DLLs with RWX section☆78Updated last year
- A simple PoC to invoke an encrypted shellcode by using an hidden call☆116Updated 2 years ago
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆32Updated 3 years ago