call-042PE / UCantSeeM3

Related projects: ⓘ

• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆79Updated last year
• Intrus1ve / Runpe-ProcessHollowing
  Fud Runpe Av Evasion / All Av Bypass
  ☆31Updated last year
• XaFF-XaFF / ZwProcessHollowing
  ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
  ☆79Updated last year
• exploitblizzard / UAC-Bypass
  Bypassing windows uac, however its an old approach/method but its still unpatched ¯\_(ツ)_/¯
  ☆41Updated 2 years ago
• exploitblizzard / Windows-Privilege-Escalation-CVE-2021-1732
  Read my blog for more info -
  ☆32Updated 3 years ago
• AzAgarampur / byeintegrity2-uac
  Bypass UAC by abusing the Internet Explorer Add-on installer
  ☆50Updated 3 years ago
• AzAgarampur / byeintegrity9-uac
  ☆35Updated last year
• realoriginal / foliage
  A proof of concept I developed to improve Gargoyle back in 2018 to achieve true memory obfuscation from position independent code
  ☆33Updated last week
• XaFF-XaFF / Shellcodev
  Shellcodev is a tool designed to help and automate the process of shellcode creation.
  ☆100Updated 11 months ago
• ch2sh / BatchGuard
  ☆105Updated this week
• tasox / CSharp_Process_Injection
  ☆51Updated 7 months ago
• GetRektBoy724 / TripleS
  Extracting Syscall Stub, Modernized
  ☆60Updated 2 years ago
• dr4k0nia / MurkyStrings
  A string obfuscator for .NET apps, built to evade static string analysis.
  ☆99Updated last year
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆39Updated 2 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆65Updated 3 years ago
• LloydLabs / process-enumeration-stealth
  ☆74Updated 3 weeks ago
• nqntmqmqmb / pePolymorpher
  A tool implementing process hollowing making your PE polymorphic
  ☆15Updated 4 years ago
• NtRaiseHardError / NINA
  NINA: No Injection, No Allocation x64 Process Injection Technique
  ☆193Updated 4 years ago
• Hemogl0bin / drvscanner
  Scan for potentially vulnerable drivers
  ☆79Updated 2 years ago
• XShar / XssBot
  XssBot-Модульный резидентный бот с супер админкой
  ☆12Updated last year
• iilegacyyii / ExportDumper
  A small tool I made to dump the export table of PE files. The primary use case was intended for use within DLL proxying.
  ☆66Updated 2 years ago
• mrexodia / lolbin-poc
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆131Updated last year
• gigajew / HVNC
  ☆75Updated this week
• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆96Updated last year
• klinix5 / WinDefendInjectPoC
  ☆87Updated this week
• NtQuerySystemInformation / NlsCodeInjectionThroughRegistry
  Dll injection through code page id modification in registry. Based on jonas lykk research
  ☆116Updated last year
• MastMind / PE-infector
  Crossplatform tool for inject shellcode into .exe and .dll binaries (x86 and x64)
  ☆52Updated 4 months ago
• LloydLabs / dearg-thread-ipc-stealth
  A novel technique to communicate between threads using the standard ETHREAD structure
  ☆108Updated 3 years ago
• plackyhacker / CmdLineSpoofer
  How to spoof the command line when spawning a new process from C#.
  ☆100Updated 2 years ago
• Kara-4search / FullDLLUnhooking_CSharp
  Unhook DLL via cleaning the DLL 's .text section
  ☆9Updated 3 years ago