aaaddress1 / SignThiefLinks
Windows PE Signature Thief in C++
☆50Updated 5 years ago
Alternatives and similar repositories for SignThief
Users that are interested in SignThief are comparing it to the libraries listed below
Sorting:
- Convert PE files to a shellcode☆79Updated 5 years ago
- Windows API Call Obfuscation☆109Updated 2 years ago
- PoC: Exploit 32-bit Thread Snapshot of WOW64 to Take Over $RIP & Inject & Bypass Antivirus HIPS (HITB 2021)☆166Updated 4 years ago
- Kill Protected Process Light Process (include av)☆58Updated last year
- HTTPS GET RAT and Memory Loader☆25Updated 2 months ago
- shellcode-loaders and beacon-loaders☆70Updated last year
- Load static-compiled PE from remote server.☆64Updated 3 years ago
- Botnet system from deep-web Russians forums. Tiny Nuke!☆92Updated 8 years ago
- ☆33Updated 2 years ago
- Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&☆56Updated 2 months ago
- NO WriteProcessMemory CreateRemoteThread APIs call shellcode injection☆31Updated 5 years ago
- ksc4cpp is a shellcode framework for windows kernel based on C++☆21Updated 2 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆71Updated 3 years ago
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆89Updated 2 years ago
- ☆203Updated 3 years ago
- PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)☆109Updated 4 years ago
- sc4cpp is a shellcode framework based on C++☆89Updated 4 years ago
- POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files☆59Updated 2 years ago
- Create a new thread that will suspend every thread and encrypt its stack, then going to sleep , then decrypt the stacks and resume thread…☆162Updated 2 years ago
- Client/server code that impersonates TLS 1.3 to disguise C2 activity.☆71Updated 3 years ago
- IAT-Obfuscation to make static analysis of executable harder.☆44Updated 3 years ago
- Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html☆132Updated 3 years ago
- Hide processes, files, services in Windows ring3☆26Updated last year
- APC DLL Injector with NtQueueApcThread and wake up thread support☆47Updated 7 years ago
- DLLHSC - DLL Hijack SCanner a tool to assist with the discovery of suitable candidates for DLL Hijacking☆155Updated 5 years ago
- Call NtCreateUserProcess directly as normal.☆72Updated 3 years ago
- Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.☆72Updated 3 years ago
- Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses☆42Updated 4 years ago
- PoC capable of detecting manual syscalls from usermode.☆200Updated 9 months ago
- about how to make a anti-virus engine☆86Updated 3 months ago