dosxuz / PerunsFart
This is my own implementation of the Perun's Fart technique by Sektor7
☆64Updated 2 years ago
Related projects: ⓘ
- ☆38Updated this week
- A method to execute shellcode using RegisterWaitForInputIdle API.☆50Updated last year
- A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously☆23Updated last year
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆37Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- ☆33Updated last year
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆93Updated last year
- ☆37Updated last year
- a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…☆49Updated last year
- Beacon Object File allowing creation of Beacons in different sessions.☆73Updated 2 years ago
- ☆43Updated 2 years ago
- I have documented all of the AMSI patches that I learned till now☆66Updated last year
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆32Updated 8 months ago
- ☆68Updated this week
- ☆54Updated last month
- Beacon Object Files (not Buffer Overflows)☆51Updated last year
- Sleep Obfuscation☆39Updated last year
- DLL Exports Extraction BOF with optional NTFS transactions.☆76Updated 2 years ago
- ☆70Updated last year
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆31Updated last year
- ☆52Updated this week