jackullrich / ShellcodeStdio
An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.
☆508Updated 5 years ago
Alternatives and similar repositories for ShellcodeStdio:
Users that are interested in ShellcodeStdio are comparing it to the libraries listed below
- An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security☆322Updated 7 years ago
- This is a simple example and explanation of obfuscating API resolution via hashing☆237Updated 4 years ago
- Universal Unhooking☆319Updated 6 years ago
- A memory scanning evasion technique☆861Updated 7 years ago
- Position Independent Windows Shellcode Written in C☆288Updated 6 years ago
- ☆392Updated 8 years ago
- Patching ROP-encoded shellcodes into PEs☆184Updated 7 years ago
- Just another Windows Process Injection☆391Updated 4 years ago
- My implementation of enSilo's Process Doppelganging (PE injection technique)☆599Updated 2 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆294Updated 6 years ago
- PowerLoaderEx - Advanced Code Injection Technique for x32 / x64☆362Updated 7 years ago
- A small, null-free Windows shellcode that executes calc.exe (x86/x64, all OS/SPs)☆406Updated 10 months ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆385Updated 4 years ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆220Updated last year
- ☆481Updated 7 years ago
- This is a standalone exploit for a vulnerable feature in Capcom.sys☆297Updated 2 years ago
- Windows Kernel Drivers fuzzer☆337Updated 8 years ago
- Capcom Rootkit POC☆192Updated 8 years ago
- Extract Windows Defender database from vdm files and unpack it☆437Updated 5 years ago
- Demos of various (also non standard) persistence methods used by malware☆221Updated 2 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆326Updated 4 years ago
- Research on Anti-malware and other related security solutions☆258Updated 4 years ago
- Examples of leaking Kernel Mode information from User Mode on Windows☆595Updated 7 years ago
- AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.☆386Updated 5 years ago
- Canadian Furious Beaver is a ProcMon-style tool designed only for capturing IRPs sent to any Windows driver.☆317Updated 11 months ago
- Quickly debug shellcode extracted during malware analysis☆593Updated last year
- InfectPE - Inject custom code into PE file [This project is not maintained anymore]☆323Updated 7 years ago
- Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…☆226Updated last month
- Shellcode Compiler☆1,091Updated 6 months ago
- Phantom DLL hollowing PoC☆357Updated 2 years ago