c3l3si4n / windows_sleep_techniques
A collections of methods to sleep on Windows using common and less-so-common techniques
β14Updated 7 months ago
Alternatives and similar repositories for windows_sleep_techniques:
Users that are interested in windows_sleep_techniques are comparing it to the libraries listed below
- Splitting and executing shellcode across multiple pagesβ100Updated last year
- γπ§γRing 3 Rootkit for Windows 10β59Updated 3 months ago
- γβοΈγDetect which native Windows API's (NtAPI) are being hookedβ38Updated 3 months ago
- This is a simple process injection made in C for Linux systemsβ26Updated last year
- Malware?β69Updated 5 months ago
- β36Updated 2 years ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.β90Updated 9 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.β73Updated 7 months ago
- γβ οΈγPerforming a BYOVD on the truesight.sys driverβ33Updated 3 months ago
- Section-based payload obfuscation technique for x64β59Updated 7 months ago
- Create Anti-Copy DRM Malwareβ54Updated 7 months ago
- β61Updated 10 months ago
- β85Updated 7 months ago
- Win32 keylogger that supports all (non-ime using) languages correctlyβ49Updated last year
- Bypass the Event Trace Windows(ETW) and unhook ntdll.β102Updated last year
- Find DLLs with RWX sectionβ79Updated last year
- in-process powershell runner for BRC4β45Updated last year
- A process injection technique using only thread context manipulationβ27Updated last year
- Classic Process Injection with Memory Evasion Techniques implemantationβ68Updated last year
- Reimplementation of the KExecDD DSE bypass technique.β47Updated 6 months ago
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.β61Updated last year
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.β62Updated last year
- Sleep Obfuscationβ44Updated 2 years ago
- β121Updated last year
- abusing Process Hacker driver to terminate other processes (BYOVD)β82Updated last year
- Tool to start a python http server in a simple wayβ10Updated 3 years ago
- β47Updated 2 years ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserveβ76Updated 7 months ago
- Rusty Hell's Gate / Halo's Gate / Tartarus' Gate / FreshyCalls / Syswhispers2 Libraryβ29Updated 2 years ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhoggβ46Updated last year