aaaddress1 / SignThiefLinks
Windows PE Signature Thief in C++
☆50Updated 4 years ago
Alternatives and similar repositories for SignThief
Users that are interested in SignThief are comparing it to the libraries listed below
Sorting:
- Windows API Call Obfuscation☆104Updated 2 years ago
- Convert PE files to a shellcode☆76Updated 5 years ago
- Load static-compiled PE from remote server.☆62Updated 3 years ago
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆85Updated 2 years ago
- Kill Protected Process Light Process (include av)☆56Updated last year
- PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)☆161Updated 4 years ago
- NO WriteProcessMemory CreateRemoteThread APIs call shellcode injection☆28Updated 5 years ago
- Unhooks Bit Defender from NTDLL and KERNELBASE using a classic technique.☆54Updated last year
- shellcode-loaders and beacon-loaders☆64Updated last year
- Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&☆55Updated 3 weeks ago
- IAT-Obfuscation to make static analysis of executable harder.☆42Updated 3 years ago
- Fud Runpe Av Evasion / All Av Bypass☆33Updated 2 years ago
- PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)☆106Updated 4 years ago
- Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html☆124Updated 3 years ago
- A simple program to obfuscate code written in cpp.☆49Updated last year
- ☆30Updated last year
- HTTPS GET RAT and Memory Loader☆25Updated 2 years ago
- shellcode生成框架☆86Updated 10 months ago
- Create a new thread that will suspend every thread and encrypt its stack, then going to sleep , then decrypt the stacks and resume thread…☆160Updated last year
- Standalone Metasploit-like XOR encoder for shellcode☆47Updated last year
- https://key08.com/index.php/2021/10/19/1375.html☆67Updated 3 years ago
- This program is used to perform reflective DLL Injection to a remote process specified by the user.☆65Updated last year
- Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses☆41Updated 4 years ago
- Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique☆63Updated 2 years ago
- ☆39Updated last year
- Bypass UAC by abusing the Internet Explorer Add-on installer☆54Updated 3 years ago
- An implementation of an indirect system call☆127Updated last year
- DLL Hollowing PoC - Remote and Self shellcode injection☆79Updated 3 years ago
- This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCr…☆63Updated last year
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆118Updated 2 years ago