ZeroMemoryEx / TrampHookLinks
Simple x86 Trampoline Hook
☆40Updated 2 years ago
Alternatives and similar repositories for TrampHook
Users that are interested in TrampHook are comparing it to the libraries listed below
Sorting:
- Simple API Hooks detector☆73Updated 2 years ago
- POC of a better implementation of GetProcAddress for ntdll using binary search☆109Updated last year
- Bypass Malware Time Delays☆101Updated 2 years ago
- Scan for potentially vulnerable drivers☆87Updated 3 years ago
- simple user-mode Rootkit☆105Updated 2 years ago
- ☆111Updated 2 years ago
- A small tool I made to dump the export table of PE files. The primary use case was intended for use within DLL proxying.☆70Updated 2 years ago
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆85Updated 2 years ago
- using the gpu to hide your payload☆58Updated 2 years ago
- Next gen process injection technique☆53Updated 4 years ago
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- simple shellcode injector☆115Updated 2 years ago
- ☆39Updated last year
- Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules☆41Updated 2 years ago
- kernel to user mode APC injector☆44Updated 3 years ago
- Hook system calls on Windows by using Kaspersky's hypervisor☆12Updated 5 months ago
- Kernel Mode Driver for Elevating Process Privileges☆133Updated 2 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆137Updated 2 years ago
- Listing UDP connections with remote address without sniffing.☆29Updated last year
- Minifilter Callback Patching Proof-of-Concept☆71Updated 2 years ago
- Shellcodev is a tool designed to help and automate the process of shellcode creation.☆110Updated last year
- Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.☆19Updated 2 years ago
- Read Memory without ReadProcessMemory for Current Process☆76Updated 3 years ago
- Standalone Metasploit-like XOR encoder for shellcode☆47Updated last year
- API Hammering with C++20☆46Updated 2 years ago
- Create a new thread that will suspend every thread and encrypt its stack, then going to sleep , then decrypt the stacks and resume thread…☆160Updated last year
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆70Updated last year
- Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html☆124Updated 3 years ago
- ☆40Updated 3 months ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆82Updated 2 years ago