ZeroPointSecurity / PInvoke
☆49Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for PInvoke
- Find DLLs with RWX section☆75Updated last year
- Lateral Movement via the .NET Profiler☆74Updated 5 months ago
- ☆121Updated 11 months ago
- I have documented all of the AMSI patches that I learned till now☆68Updated last year
- Simple BOF to read the protection level of a process☆104Updated last year
- ☆95Updated last year
- Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms☆111Updated last year
- ☆89Updated 2 years ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆78Updated last year
- Beacon Object File allowing creation of Beacons in different sessions.☆76Updated 2 years ago
- ☆83Updated 5 months ago
- My implementation of Halo's Gate technique in C#☆53Updated 2 years ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆75Updated last year
- lsassdump via RtlCreateProcessReflection and NanoDump☆70Updated 3 weeks ago
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆130Updated last month
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆82Updated 2 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆77Updated last year
- Create Anti-Copy DRM Malware☆42Updated 2 months ago
- Modified versions of the Cobalt Strike Process Injection Kit☆87Updated 9 months ago
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆86Updated 2 years ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆114Updated 5 months ago
- Patch AMSI and ETW in remote process via direct syscall☆77Updated 2 years ago
- ☆73Updated last year
- ☆103Updated 6 months ago
- ☆118Updated last year
- Rusty Hell's Gate / Halo's Gate / Tartarus' Gate / FreshyCalls / Syswhispers2 Library☆24Updated 2 years ago
- ☆61Updated 2 years ago
- ☆73Updated last year
- Beacon Object Files (not Buffer Overflows)☆51Updated last year