brosck / Frosty
γπ§γRing 3 Rootkit for Windows 10
β55Updated 8 months ago
Related projects β
Alternatives and complementary repositories for Frosty
- Splitting and executing shellcode across multiple pagesβ99Updated last year
- π‘οΈ A multi-user malleable C2 framework targeting Windows. Written in C++ and Pythonβ40Updated 8 months ago
- γβοΈγDetect which native Windows API's (NtAPI) are being hookedβ37Updated last year
- Indirect Syscall implementation to bypass userland NTAPIs hooking.β54Updated 2 months ago
- Classic Process Injection with Memory Evasion Techniques implemantationβ62Updated last year
- This is a simple process injection made in C for Linux systemsβ22Updated last year
- A modification to fortra's CVE-2023-28252 exploit, compiled to exeβ52Updated 9 months ago
- A collections of methods to sleep on Windows using common and less-so-common techniquesβ13Updated 2 months ago
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process holβ¦β67Updated 9 months ago
- Bypass the Event Trace Windows(ETW) and unhook ntdll.β92Updated last year
- Red Team Operation's Defense Evasion Technique.β51Updated 5 months ago
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.β69Updated 8 months ago
- Bypass Malware Sandbox Evasion Ram checkβ134Updated last year
- Rex Shellcode Loader for AV/EDR evasionβ27Updated 7 months ago
- Make an Linux Kernel rootkit visible again.β42Updated last month
- MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploitβ36Updated last year
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)β40Updated last year
- DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secuβ¦β37Updated 5 months ago
- Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, anβ¦β173Updated last year
- β124Updated 2 weeks ago
- Section-based payload obfuscation technique for x64β58Updated 3 months ago
- Various methods of executing shellcodeβ68Updated last year
- β118Updated last year
- Standalone Metasploit-like XOR encoder for shellcodeβ45Updated 6 months ago
- NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing Rβ¦β57Updated last year
- using the gpu to hide your payloadβ47Updated 2 years ago