gwillgues / BPFDoor
BPFDoor Source Code. Originally found from Chinese Threat Actor Red Menshen
☆40Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for BPFDoor
- Enabled / Disable LSA Protection via BYOVD☆62Updated 2 years ago
- 64bit WIndows 10 shellcode dat pops dat calc - Dynamic & Null Free☆58Updated last year
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆53Updated 2 years ago
- ☆79Updated 2 years ago
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆59Updated last year
- Golang bindings for PE-sieve☆40Updated last year
- Offensive RPC PoC☆83Updated 3 years ago
- Plantronics Desktop Hub LPE☆35Updated 6 months ago
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆45Updated 2 years ago
- ☆44Updated 2 years ago
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆32Updated 2 years ago
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆21Updated 6 months ago
- A Poc on blocking Procmon from monitoring network events☆98Updated 2 years ago
- Titan: A crappy Reflective Loader written in C and assembly for Cobalt Strike. Redirects DNS Beacon over DoH☆43Updated 3 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated last year
- ☆82Updated 2 years ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆32Updated last year
- A work in progress BOF/COFF loader in Rust☆45Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- Load a dynamic library from memory using a fuse mount☆29Updated last year
- call gates as stable comunication channel for NT x86 and Linux x86_64☆30Updated last year
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆39Updated 11 months ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆95Updated last year
- ☆37Updated 10 months ago
- the Open Source and Pure C++ Packer for eXecutables☆18Updated last year
- Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space☆120Updated last year
- An example of COM hijacking using a proxy DLL.☆25Updated 3 years ago
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)☆45Updated last month