call-042PE / UCantSeeM3
Hiding your process in ProcessHacker,Task Manager,etc by patching NtQuerySystemInformation
☆86Updated 3 years ago
Alternatives and similar repositories for UCantSeeM3:
Users that are interested in UCantSeeM3 are comparing it to the libraries listed below
- Fud Runpe Av Evasion / All Av Bypass☆32Updated last year
- Bypassing windows uac, however its an old approach/method but its still unpatched ¯\_(ツ)_/¯☆42Updated 3 years ago
- user-mode Rootkit☆102Updated 2 years ago
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆81Updated last year
- Process Hollowing demonstration & explanation☆34Updated 3 years ago
- A proof of concept I developed to improve Gargoyle back in 2018 to achieve true memory obfuscation from position independent code☆43Updated 4 months ago
- Shellcodev is a tool designed to help and automate the process of shellcode creation.☆105Updated last year
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆61Updated last year
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 3 years ago
- A string obfuscator for .NET apps, built to evade static string analysis.☆101Updated 2 years ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆132Updated 2 years ago
- Bypass UAC at any level by abusing the Task Scheduler and environment variables☆30Updated 3 years ago
- ☆79Updated 5 months ago
- Next gen process injection technique☆44Updated 4 years ago
- 💻 Windows 10 Kernel-mode rootkit☆31Updated 2 years ago
- A small tool I made to dump the export table of PE files. The primary use case was intended for use within DLL proxying.☆69Updated 2 years ago
- A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks.☆106Updated 2 years ago
- Unhook DLL via cleaning the DLL 's .text section☆8Updated 3 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆133Updated last year
- XssBot-Модульный резидентный бот с супер админкой☆12Updated 2 years ago
- Bypass Malware Time Delays☆100Updated 2 years ago
- ☆36Updated last year
- using the gpu to hide your payload☆53Updated 2 years ago
- ☆15Updated 3 years ago
- LdrLoadDll Unhooking☆123Updated 3 years ago
- A tool implementing process hollowing making your PE polymorphic☆14Updated 4 years ago
- A Poc on blocking Procmon from monitoring network events☆100Updated 2 years ago
- Easy XOR string encryption for NET based binaries☆133Updated last year
- SharpASM is a C# project that aims to automate ASM (i.e. shellcode) execution in .NET programs by exploiting code caves in RWX sections a…☆57Updated 2 years ago