am0nsec / wspeLinks
Windows System Programming Experiments
☆221Updated 3 years ago
Alternatives and similar repositories for wspe
Users that are interested in wspe are comparing it to the libraries listed below
Sorting:
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆183Updated 5 months ago
- Windows user-land hooks manipulation tool.☆145Updated 4 years ago
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆190Updated last month
- Kernel Exploits☆259Updated 4 years ago
- NINA: No Injection, No Allocation x64 Process Injection Technique☆227Updated 5 years ago
- ☆136Updated 6 months ago
- OffensivePH - use old Process Hacker driver to bypass several user-mode access controls☆338Updated 3 years ago
- Extract Windows Defender database from vdm files and unpack it☆460Updated last month
- Example code for EDR bypassing☆150Updated 6 years ago
- https://blog.f-secure.com/hiding-malicious-code-with-module-stomping/☆121Updated 6 years ago
- A more stealthy variant of "DLL hollowing"☆359Updated last year
- Managed assembly shellcode generation☆274Updated 4 years ago
- This is a simple example and explanation of obfuscating API resolution via hashing☆237Updated 5 years ago
- My notes while studying Windows exploitation☆190Updated 2 years ago
- ☆96Updated 3 years ago
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆112Updated 4 years ago
- A simple implant showcasing modern C++☆108Updated 4 years ago
- Evasive Process Hollowing Techniques☆140Updated 5 years ago
- Just another Windows Process Injection☆401Updated 5 years ago
- A list of all the DLLs export in C:\windows\system32\☆218Updated 3 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆71Updated 3 years ago
- Set of antianalysis techniques found in malware☆131Updated 2 years ago
- The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).☆234Updated 9 months ago
- Phantom DLL hollowing PoC☆366Updated 3 years ago
- A novel technique to communicate between threads using the standard ETHREAD structure☆114Updated 4 years ago
- Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows☆217Updated 3 years ago
- Enumerate various traits from Windows processes as an aid to threat hunting☆188Updated 3 years ago
- WTSRM☆215Updated 3 years ago
- From directory deletion to SYSTEM shell☆111Updated 5 years ago
- Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction wit…☆213Updated 2 years ago