atabetnouhaila / API-hashing

Related projects ⓘ

Alternatives and complementary repositories for API-hashing

• SecTheBit / MalDevelopment
  All my POC related to malware development
  ☆11Updated 6 months ago
• RATandC2 / FilelessNtdllReflection
  Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…
  ☆15Updated last year
• sudonoodle / Aggressor-NTFY
  Cobalt Strike notifications via NTFY.
  ☆13Updated 2 months ago
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆51Updated last year
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆22Updated 2 months ago
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆34Updated last year
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆30Updated 6 months ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆40Updated 2 weeks ago
• b4rth0v5k1 / EarlyBirdNTDLL
  ☆34Updated last year
• Wh04m1001 / PICDumper
  ☆24Updated 2 years ago
• EspressoCake / DefenderPathExclusions
  Creation and removal of Defender path exclusions and exceptions in C#.
  ☆30Updated last year
• EspressoCake / BetterPipename
  Example of using Sleep to create better named pipes.
  ☆41Updated last year
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆16Updated last year
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆24Updated 4 months ago
• Mr-Un1k0d3r / BOFCode
  Bunch of BOF files
  ☆24Updated 9 months ago
• waawaa / Hooked-Injector
  Hooked create process injection for meterpreter
  ☆23Updated 3 years ago
• Offensive-Panda / WPM-MAJIC-ENTRY-POINT-INJECTION
  This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…
  ☆13Updated 3 weeks ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆37Updated 10 months ago
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆23Updated 8 months ago
• FuzzySecurity / SAFACon-Vienna
  ☆22Updated 6 months ago
• OtterHacker / Cerbere
  ☆46Updated last year
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆20Updated last week
• hackerhouse-opensource / Gigabyte_ElevatePersist
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆30Updated last year
• Quack2332 / Simple-.NET-Obfuscator-PoC
  ☆19Updated 5 months ago
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆37Updated last year
• CodeXTF2 / evasion-adventures-files
  Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"
  ☆23Updated last year