decoder-it / RelabelAbuse
☆60Updated 8 months ago
Alternatives and similar repositories for RelabelAbuse:
Users that are interested in RelabelAbuse are comparing it to the libraries listed below
- ☆94Updated last month
- BOF with Synthetic Stackframe☆108Updated 3 weeks ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 6 months ago
- ☆97Updated last year
- ☆84Updated 5 months ago
- ☆122Updated 5 months ago
- Threadless shellcode injection tool☆63Updated 6 months ago
- I have documented all of the AMSI patches that I learned till now☆74Updated last year
- ☆93Updated 5 months ago
- Malware?☆69Updated 4 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆59Updated 11 months ago
- TypeLib persistence technique☆107Updated 3 months ago
- Execute dotnet app from unmanaged process☆70Updated last month
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆58Updated last year
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆39Updated last year
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆54Updated last month
- Mythic C2 Agent written in x64 PIC C☆67Updated 3 weeks ago
- Patch AMSI and ETW in remote process via direct syscall☆81Updated 2 years ago
- Section-based payload obfuscation technique for x64☆59Updated 6 months ago
- ☆134Updated last year
- stack spoofing☆80Updated 3 months ago
- ☆115Updated last year
- ☆28Updated 5 months ago
- Find DLLs with RWX section☆76Updated last year
- ☆120Updated last year
- Construct the payload at runtime using an array of offsets☆61Updated 8 months ago