GhostWriting Injection Technique.
☆201Mar 26, 2018Updated 8 years ago
Alternatives and similar repositories for GhostWriting
Users that are interested in GhostWriting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A process injection technique using only thread context manipulation☆42Dec 18, 2023Updated 2 years ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆285Sep 18, 2024Updated last year
- A simple Linux in-memory .so loader☆35Mar 29, 2023Updated 3 years ago
- Finding Truth in the Shadows☆129Jan 26, 2023Updated 3 years ago
- Sample Rust Hooking Engine☆34Apr 5, 2024Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Another approach of Threadless injection discovered by @_EthicalChaos_ in c that loads a module into the target process and stomps it, an…☆188Aug 2, 2023Updated 2 years ago
- Aims to identify sleeping beacons☆671Jan 25, 2026Updated 5 months ago
- In-memory hiding technique☆65Jan 5, 2025Updated last year
- Next gen process injection technique☆55Jul 9, 2020Updated 5 years ago
- Linux Sleep Obfuscation☆130Jan 7, 2024Updated 2 years ago
- C++ self-Injecting dropper based on various EDR evasion techniques.☆441Feb 11, 2024Updated 2 years ago
- ROP-based sleep obfuscation to evade memory scanners☆384Jun 22, 2025Updated last year
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.☆313Dec 9, 2023Updated 2 years ago
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆109Mar 25, 2024Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Threadless Process Injection through entry point hijacking☆354Sep 10, 2024Updated last year
- ☆45Oct 16, 2023Updated 2 years ago
- A collection of position independent coding resources☆122Nov 15, 2025Updated 7 months ago
- Encrypted shellcode Injection to avoid Kernel triggered memory scans☆424Sep 12, 2023Updated 2 years ago
- FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!☆358Sep 1, 2022Updated 3 years ago
- NINA: No Injection, No Allocation x64 Process Injection Technique☆225Jun 9, 2020Updated 6 years ago
- Rootkit for the blue team. Sophisticated and optimized LKM to detect and prevent malicious activity☆35Apr 26, 2024Updated 2 years ago
- Threadless shellcode injection tool☆68Aug 5, 2024Updated last year
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆65Jun 23, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.☆606Aug 2, 2025Updated 10 months ago
- The Definitive Guide To Process Cloning on Windows☆552Jan 3, 2024Updated 2 years ago
- ☆111Aug 21, 2024Updated last year
- An In-memory Embedding of CPython☆31May 24, 2021Updated 5 years ago
- PoC Implementation of a fully dynamic call stack spoofer☆967Jul 20, 2024Updated last year
- Indirect syscalls + DInvoke made simple.☆97Dec 24, 2024Updated last year
- Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll☆511Feb 3, 2022Updated 4 years ago
- Tools for analyzing EDR agents☆278Jun 10, 2024Updated 2 years ago
- Cobalt Strike UDRL for memory scanner evasion.☆1,020Jun 4, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Move CS beacon to GPU memory when sleeping☆250Nov 19, 2021Updated 4 years ago
- Heap encryption in Nim☆21Aug 25, 2024Updated last year
- Beacon Object File Loader☆296Dec 3, 2023Updated 2 years ago
- A shellcode function to encrypt a running process image when sleeping.☆340Sep 11, 2021Updated 4 years ago
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆194Mar 4, 2024Updated 2 years ago
- An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities☆69Aug 25, 2022Updated 3 years ago
- A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)☆576Apr 8, 2025Updated last year