hexomethyl / prochider_internal
☆9Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for prochider_internal
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆20Updated 2 years ago
- POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…☆38Updated 3 years ago
- IAT-Obfuscation to make static analysis of executable harder.☆41Updated 3 years ago
- A kernel mode Windows rootkit in development.☆49Updated 2 years ago
- ☆26Updated 2 years ago
- Phantom DLL Hollowing method implemented in modmap☆17Updated 3 years ago
- ksc4cpp is a shellcode framework for windows kernel based on C++☆21Updated last year
- A compact tool for detecting AV/EDR hooks in default Windows libraries.☆29Updated 2 years ago
- ☆22Updated last year
- ☆53Updated 2 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆62Updated 2 years ago
- ☆11Updated 2 years ago
- 从admin冲到TrustedInstaller☆17Updated last year
- Kill Protected Process Light Process (include av)☆54Updated last year
- Implementation of several code injection techniques.☆21Updated 2 years ago
- Call NtCreateUserProcess directly as normal.☆66Updated 2 years ago
- An Obfuscator-LLVM based mingw-w64 toolchain.☆17Updated 2 years ago
- ☆26Updated last year
- Convert native dll to shellcode, and support exported function☆22Updated 3 years ago
- ☆37Updated last year
- Tiny driver patch to allow kernel callbacks to work on Win10 21h1☆31Updated 2 years ago
- Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&☆52Updated this week
- NO WriteProcessMemory CreateRemoteThread APIs call shellcode injection☆28Updated 4 years ago
- A PoC tool for exploiting leaked process and thread handles☆30Updated 9 months ago
- Rookit and anti rookit on Windows platform☆10Updated 6 months ago
- This is a project to receive Base64 data and decode it in process☆14Updated 4 years ago