spoof return address
☆79Apr 28, 2023Updated 2 years ago
Alternatives and similar repositories for spoofcall
Users that are interested in spoofcall are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Research of modifying exported function names at runtime (C/C++, Windows)☆18May 28, 2024Updated last year
- ☆185May 20, 2022Updated 3 years ago
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆93Mar 23, 2023Updated 3 years ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆15Apr 21, 2025Updated 11 months ago
- This POC provides the possibilty to execute x86 shellcode in form of a .bin file based on x86 inline assembly☆20Apr 17, 2023Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆108Aug 21, 2024Updated last year
- Block any Process to open HANDLE to your process , only SYTEM is allowed to open handle to your process ,with that you can avoid remote m…☆174Apr 27, 2023Updated 2 years ago
- A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)☆563Apr 8, 2025Updated last year
- ☆225Mar 11, 2023Updated 3 years ago
- Kernel dwm render☆172Oct 10, 2023Updated 2 years ago
- Compile-time, Usermode + Kernelmode, safe and lightweight string crypter library for C++11+☆827Jun 3, 2021Updated 4 years ago
- Identify and exploit leaked handles for local privilege escalation.☆110Jun 19, 2023Updated 2 years ago
- This tool will allow you to spoof the return addresses of your functions as well as system functions.☆560Nov 12, 2022Updated 3 years ago
- Win64 UEFI Driver-based tool for unrestricted memory R/W☆30Feb 8, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- A bunch of scripts and code i wrote.☆149Nov 7, 2024Updated last year
- Exploitation of process killer drivers☆204Oct 17, 2023Updated 2 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆70Mar 6, 2026Updated last month
- Evasive loader to bypass static detection☆59Jan 15, 2024Updated 2 years ago
- Inline syscalls made for MSVC supporting x64 and WOW64☆194Jul 10, 2023Updated 2 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69May 11, 2023Updated 2 years ago
- ☆42Feb 18, 2025Updated last year
- A PoC for adding NtContinue to CFG allowed list in order to make Ekko work in a CFG protected process☆115Aug 29, 2022Updated 3 years ago
- golang decryption poc of the new app bound encryption introduced in chrome version 127.☆22Nov 4, 2024Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Windows x64 kernel mode rootkit process hollowing POC.☆190Jun 30, 2023Updated 2 years ago
- Encypting the Heap while sleeping by hooking and modifying Sleep with our own sleep that encrypts the heap☆248Aug 2, 2023Updated 2 years ago
- Use hardware breakpoints to spoof the call stack for both syscalls and API calls☆203Jun 6, 2024Updated last year
- Bypass LSA protection using the BYODLL technique☆178Sep 21, 2024Updated last year
- SeManageVolumePrivilege to SYSTEM☆149Nov 22, 2023Updated 2 years ago
- Standard Kernel Library for Windows manipulation in C++☆205Jun 18, 2025Updated 9 months ago
- Plantronics Desktop Hub LPE☆37May 15, 2024Updated last year
- Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!☆250Jul 9, 2024Updated last year
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆31Jan 30, 2025Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- NTAPI hook bypass with (semi) legit stack trace☆19May 9, 2023Updated 2 years ago
- Work, timer, and wait callback example using solely Native Windows APIs.☆88Feb 11, 2024Updated 2 years ago
- Exploitation of echo_driver.sys☆170Sep 16, 2023Updated 2 years ago
- Windows Research Kernel☆37Sep 22, 2025Updated 6 months ago
- Winsocket for Cobalt Strike.☆105Jul 6, 2023Updated 2 years ago
- Compile-time + Lifetime, Usermode + Kernelmode, safe and lightweight string crypter library for C++17+, based on skCrypter☆20Jan 17, 2026Updated 2 months ago
- Remote Shellcode Injector☆221Aug 27, 2023Updated 2 years ago