hasherezade / sig_finderView external linksLinks
Signature finder (from PE-bear)
☆39Aug 25, 2025Updated 5 months ago
Alternatives and similar repositories for sig_finder
Users that are interested in sig_finder are comparing it to the libraries listed below
Sorting:
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Jan 30, 2025Updated last year
- Standalone Metasploit-like XOR encoder for shellcode☆50May 12, 2024Updated last year
- powershell script i wrote that can suspend an arbitrary process (with limits)☆22Mar 26, 2023Updated 2 years ago
- ☆44Apr 27, 2024Updated last year
- Single-header LZW (Lempel-Ziv-Welch) C Library, headerless compressor & decompressor (variable code, 9-16 bits)☆22Jan 2, 2026Updated last month
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- Parser and reconciliation tooling for large Active Directory environments.☆33Feb 18, 2025Updated 11 months ago
- Vectored Exception Handling Squared☆29Dec 27, 2025Updated last month
- Detailed explanation of Windows cryptographic algorithms, with examples and schemes.☆22Nov 28, 2024Updated last year
- A work in progress BOF/COFF loader in Rust☆50Mar 22, 2023Updated 2 years ago
- converts sRDI compatible dlls to shellcode☆35Jan 20, 2025Updated last year
- Playing with packets in C#☆14Aug 16, 2024Updated last year
- BasicLDR: A Reflective DLL Loader☆14Jun 11, 2024Updated last year
- The code is a pingback to the Dark Vortex blog:☆187Jan 26, 2023Updated 3 years ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆138Sep 12, 2022Updated 3 years ago
- Single header version of System Informer's phnt library.☆240Jan 9, 2026Updated last month
- Process Injection using Thread Name☆297Apr 18, 2025Updated 9 months ago
- ☆26Apr 10, 2023Updated 2 years ago
- Callstack spoofing using a VEH because VEH all the things.☆23Mar 18, 2025Updated 10 months ago
- ☆12Feb 4, 2025Updated last year
- Command Augmentation support for BOFs and .NET assemblies across agents☆38Jan 12, 2026Updated last month
- Simple HTTP async comms using standard GET/POST requests☆46Feb 5, 2026Updated last week
- early cascade injection PoC based on Outflanks blog post, in rust☆62Nov 8, 2024Updated last year
- Firefox webInjector capable of injecting codes into webpages using a mitmproxy.☆42Oct 30, 2022Updated 3 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆141Feb 27, 2023Updated 2 years ago
- ☆145Nov 6, 2025Updated 3 months ago
- Projected developed for fun only that simulates APT 29 and Lockbit TTPs, showcasing phishing, ISO execution, and DLL proxying for persist…☆61May 3, 2024Updated last year
- PoC that measures how long it takes the CPU to execute the CPUID instruction and reports if it suspects a VM. Works on both Windows and L…☆26Sep 11, 2020Updated 5 years ago
- Post-Ex BOF tooling for Hannibal☆24Nov 20, 2024Updated last year
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆137Apr 12, 2024Updated last year
- shell code example☆67Dec 12, 2025Updated 2 months ago
- WinDbg plugin to trace module transitions from a debugged driver.☆40Dec 22, 2025Updated last month
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆282Apr 6, 2025Updated 10 months ago
- Sleep Obfuscation☆45Oct 13, 2022Updated 3 years ago
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆389Jul 30, 2024Updated last year
- ☆28Aug 3, 2024Updated last year
- Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!☆246Jul 9, 2024Updated last year
- simple zero-dependency timer implementation☆12May 24, 2023Updated 2 years ago
- Bypassing AV, EDR, Application Whitelisting and ASR Rules☆13Apr 18, 2023Updated 2 years ago