☆84Oct 18, 2022Updated 3 years ago
Alternatives and similar repositories for SysmonEnte
Users that are interested in SysmonEnte are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC☆377May 24, 2022Updated 4 years ago
- ☆10Apr 19, 2026Updated last month
- miscellaneous scripts and programs☆286May 13, 2026Updated 3 weeks ago
- A C Implementation for using a new method to invoke undetectable indirect syscalls☆20Dec 2, 2025Updated 6 months ago
- ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…☆174Apr 12, 2026Updated last month
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- You shall pass☆270Jul 16, 2022Updated 3 years ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆141Sep 12, 2022Updated 3 years ago
- A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementin…☆537Aug 1, 2022Updated 3 years ago
- ☆138Dec 4, 2023Updated 2 years ago
- PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.☆624Sep 26, 2023Updated 2 years ago
- POC tool to convert CobaltStrike BOF files to raw shellcode☆220Nov 5, 2021Updated 4 years ago
- ☆53Sep 16, 2021Updated 4 years ago
- ☆118Aug 7, 2022Updated 3 years ago
- Modify managed functions from unmanaged code☆53Feb 1, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Load .net assemblies from memory while having them appear to be loaded from an on-disk location.☆173May 5, 2021Updated 5 years ago
- ☆12Jun 22, 2022Updated 3 years ago
- ☆153Jan 6, 2023Updated 3 years ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆302Oct 26, 2022Updated 3 years ago
- Running .NET from VBA☆147Feb 11, 2023Updated 3 years ago
- A VSCode devcontainer for development of COFF files with batteries included.☆50Jul 10, 2023Updated 2 years ago
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆234Oct 18, 2022Updated 3 years ago
- Recovering NTLM hashes from Credential Guard☆387Dec 26, 2022Updated 3 years ago
- A C implementation for a stealth injection method☆38Jan 30, 2026Updated 4 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ☆275Jan 14, 2023Updated 3 years ago
- Venom is a library that meant to perform evasive communication using stolen browser socket☆397Sep 26, 2023Updated 2 years ago
- NimicStack is the pure Nim implementation of Call Stack Spoofing technique to mimic legitimate programs☆95Apr 4, 2026Updated 2 months ago
- ☆93Aug 23, 2021Updated 4 years ago
- ☆115Oct 10, 2022Updated 3 years ago
- Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows☆225Aug 12, 2022Updated 3 years ago
- C# POC code for the SessionEnv dll hijack by utilizing called functions of TSMSISrv.dll☆63Apr 18, 2019Updated 7 years ago
- Beacon Object File (BOF) for remote process injection via thread hijacking☆223Jan 13, 2021Updated 5 years ago
- A quick example of the Hells Gate technique in Nim☆92Aug 11, 2021Updated 4 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Beacon Object File Loader☆295Dec 3, 2023Updated 2 years ago
- ☆513Aug 14, 2022Updated 3 years ago
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆164Mar 1, 2024Updated 2 years ago
- Proper Payload Protection Prevents Poor Performance☆76Jul 27, 2022Updated 3 years ago
- ☆170Jan 7, 2022Updated 4 years ago
- Use GZip to compress your .NET assemblies for loading with AssemblyResolve.☆20Apr 11, 2014Updated 12 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆116Oct 21, 2023Updated 2 years ago