csandker / InterProcessCommunication-Samples
Some Code Samples for Windows based Inter-Process-Communication (IPC)
☆171Updated last year
Alternatives and similar repositories for InterProcessCommunication-Samples:
Users that are interested in InterProcessCommunication-Samples are comparing it to the libraries listed below
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆173Updated 4 months ago
- ☆197Updated 3 years ago
- Run Processes as PPL with ELAM☆160Updated 3 years ago
- APC Internals Research Code☆163Updated 4 years ago
- PoC memory injection detection agent based on ETW, for offensive and defensive research purposes☆269Updated 3 years ago
- GhostWriting Injection Technique.☆168Updated 7 years ago
- Security product hook detection☆317Updated 4 years ago
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆112Updated last year
- x64 Assembly HalosGate direct System Caller to evade EDR UserLand hooks☆204Updated 2 years ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆225Updated 2 years ago
- Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction wit…☆213Updated 2 years ago
- https://blog.f-secure.com/hiding-malicious-code-with-module-stomping/☆119Updated 5 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆95Updated 2 months ago
- Load a dynamic library from memory by modifying the native Windows loader☆217Updated 2 months ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆244Updated 2 years ago
- Three Tiny Examples of Directly Using Vista's NtCreateUserProcess☆87Updated 9 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆209Updated 5 years ago
- FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!☆328Updated 2 years ago
- PoC capable of detecting manual syscalls from usermode.☆193Updated 4 months ago
- Minimal PoC developed as discuss in https://captmeelo.com/redteam/maldev/2022/05/10/ntcreateuserprocess.html☆134Updated 2 years ago
- A small PoC that creates processes in Windows☆177Updated 10 months ago
- Unofficial Common Log File System (CLFS) Documentation☆174Updated 3 years ago
- Samples from my book Windows Native API programming☆60Updated this week
- Collection of DLL function export forwards for DLL export function proxying☆95Updated last year
- An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.☆137Updated 2 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆139Updated 6 years ago
- Reverse engineering winapi function loadlibrary.☆188Updated last year
- ☆162Updated 3 years ago
- Reflective PE loader for DLL injection☆174Updated 7 years ago
- Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!☆231Updated 8 months ago