c3l3si4n / windows_sleep_techniques

Related projects ⓘ

Alternatives and complementary repositories for windows_sleep_techniques

• brosck / Frosty
  「🧊」Ring 3 Rootkit for Windows 10
  ☆55Updated 8 months ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆58Updated 3 months ago
• unkvolism / Fuck-Etw
  Bypass the Event Trace Windows(ETW) and unhook ntdll.
  ☆92Updated last year
• viniciuspereiras / bingo
  Tool to start a python http server in a simple way
  ☆10Updated 2 years ago
• fern89 / ghostwriting-2
  A process injection technique using only thread context manipulation
  ☆23Updated 11 months ago
• MatheuZSecurity / Infector
  This is a simple process injection made in C for Linux systems
  ☆22Updated last year
• zimnyaa / insomnia
  a stage1 DLL loader with sleep obfuscation
  ☆32Updated last year
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆99Updated last year
• brosck / APIHookingDetector
  「⚙️」Detect which native Windows API's (NtAPI) are being hooked
  ☆37Updated last year
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆46Updated 3 months ago
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆82Updated 5 months ago
• 0prrr / Malwear-Sweet
  Malware?
  ☆70Updated last month
• eversinc33 / 1.6-C2
  Using the Counter Strike 1.6 RCON protocol as a C2 Channel.
  ☆57Updated 9 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆55Updated 3 months ago
• securifybv / BOFRyptor
  ☆118Updated last year
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆28Updated 7 months ago
• voidvxvt / EnableAllTokenPrivs
  Enable or Disable TokenPrivilege(s)
  ☆12Updated 6 months ago
• decoder-it / RelabelAbuse
  ☆59Updated 5 months ago
• realoriginal / grimreaper
  A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
  ☆104Updated 2 months ago
• Reijaff / offensive_c
  ☆40Updated last year
• lleon1435 / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆14Updated last year
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare.
  ☆78Updated 6 months ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆52Updated 5 months ago
• xrombar / flower
  a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor
  ☆95Updated 7 months ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆95Updated last year
• 0xHossam / HuffLoader
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader
  ☆85Updated 8 months ago
• S12cybersecurity / NinjaInjector
  Classic Process Injection with Memory Evasion Techniques implemantation
  ☆63Updated last year