demon-i386 / binarybinarybinary
some AV / EDR / analysis studies
☆11Updated last year
Alternatives and similar repositories for binarybinarybinary:
Users that are interested in binarybinarybinary are comparing it to the libraries listed below
- A more reliable way of resolving syscall numbers in Windows☆50Updated 11 months ago
- Debug-assisted Argument Spoofing☆14Updated 3 months ago
- ☆47Updated last year
- Sample Rust Hooking Engine☆35Updated 9 months ago
- A work in progress BOF/COFF loader in Rust☆46Updated last year
- EvtPsst☆53Updated last year
- BOF for C2 framework☆39Updated 2 months ago
- in-process powershell runner for BRC4☆45Updated last year
- Donut generator in rust.☆26Updated 2 years ago
- Linux Sleep Obfuscation☆91Updated last year
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆14Updated last year
- ☆58Updated last year
- Attack chain emulator. Write recipes for initial access easily☆20Updated last year
- Heap encryption in Nim☆19Updated 5 months ago
- Rusty Hell's Gate / Halo's Gate / Tartarus' Gate / FreshyCalls / Syswhispers2 Library☆25Updated 2 years ago
- API Hammering with C++20☆44Updated 2 years ago
- Reimplementation of the KExecDD DSE bypass technique.☆45Updated 4 months ago
- Just another Process Injection using Process Hollowing technique.☆16Updated last year
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated 6 months ago
- maldev obviously☆25Updated 7 months ago
- malleable profile generator GUI for Havoc☆56Updated last year
- Section-based payload obfuscation technique for x64☆59Updated 5 months ago
- UAC Bypass using CMSTP in Rust☆23Updated last month
- A process injection technique using only thread context manipulation☆25Updated last year
- Mythic C2 Agent written in x64 PIC C☆65Updated this week
- ☆46Updated last year
- Select any exported function in a dll as the new dll's entry point.☆75Updated 3 months ago
- Malware?☆69Updated 3 months ago