jackullrich/universal-syscall-64 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jackullrich/universal-syscall-64

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jackullrich/universal-syscall-64)

Close

jackullrich / universal-syscall-64View on GitHubMore

• External links
• Readme badge

Resolve syscall numbers at runtime for all Windows versions.

☆60Nov 21, 2024Updated last year

Alternatives and similar repositories for universal-syscall-64

Users that are interested in universal-syscall-64 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Flangvik / RosFuscator

  View on GitHub
  YouTube/Livestream project for obfuscating C# source code using Roslyn
  ☆129May 9, 2021Updated 5 years ago
• FalconForceTeam / SysWhispers2BOF

  View on GitHub
  Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs
  ☆125May 24, 2022Updated 4 years ago
• xforcered / Dendrobate

  View on GitHub
  Managed code hooking template.
  ☆108Feb 15, 2021Updated 5 years ago
• N4kedTurtle / SharpTeamsDump

  View on GitHub
  Dump Teams conversations
  ☆18Jun 9, 2021Updated 5 years ago
• boku7 / Nobelium-PdfDLRunAesShellcode

  View on GitHub
  A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn
  ☆100Mar 8, 2023Updated 3 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• jfmaes / SharpHandler

  View on GitHub
  ☆188Jan 5, 2021Updated 5 years ago
• 0xsp-SRD / callback_injection-Csharp

  View on GitHub
  this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…
  ☆88Jun 24, 2022Updated 3 years ago
• boku7 / HellsGatePPID

  View on GitHub
  Assembly HellGate implementation that directly calls Windows System Calls and displays the PPID of the explorer.exe process
  ☆106Mar 8, 2023Updated 3 years ago
• ChaitanyaHaritash / NIM-Scripts

  View on GitHub
  ☆18Aug 19, 2021Updated 4 years ago
• NVISOsecurity / brown-bags

  View on GitHub
  ☆112Jul 24, 2023Updated 2 years ago
• S3cur3Th1sSh1t / Nim_CBT_Shellcode

  View on GitHub
  CallBack-Techniques for Shellcode execution ported to Nim
  ☆61Mar 19, 2021Updated 5 years ago
• rvrsh3ll / RuralBishop

  View on GitHub
  D/Invoke port of UrbanBishop
  ☆30Dec 13, 2020Updated 5 years ago
• nettitude / RunOF

  View on GitHub
  ☆153Jan 6, 2023Updated 3 years ago
• Adepts-Of-0xCC / SnoopyOwl

  View on GitHub
  ☆49May 12, 2021Updated 5 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• byt3bl33d3r / pyMalleableC2

  View on GitHub
  Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.
  ☆288Updated this week
• matterpreter / SHAPESHIFTER

  View on GitHub
  Companion PoC for the "Adventures in Dynamic Evasion" blog post
  ☆128May 25, 2021Updated 5 years ago
• ChoiSG / UuidShellcodeExec

  View on GitHub
  PoC for UUID shellcode execution using DInvoke
  ☆157Mar 8, 2021Updated 5 years ago
• rasta-mouse / RuralBishop

  View on GitHub
  D/Invoke port of UrbanBishop
  ☆108Jul 19, 2020Updated 5 years ago
• rsmudge / unhook-bof

  View on GitHub
  Remove API hooks from a Beacon process.
  ☆284Sep 18, 2021Updated 4 years ago
• nettitude / RunPE

  View on GitHub
  C# Reflective loader for unmanaged binaries.
  ☆446Jan 25, 2023Updated 3 years ago
• NVISOsecurity / DInvisibleRegistry

  View on GitHub
  DInvisibleRegistry
  ☆83Nov 20, 2020Updated 5 years ago
• connormcgarr / cThreadHijack

  View on GitHub
  Beacon Object File (BOF) for remote process injection via thread hijacking
  ☆223Jan 13, 2021Updated 5 years ago
• aaaddress1 / dnLauncher

  View on GitHub
  ☆37Dec 27, 2021Updated 4 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• frkngksl / Celeborn

  View on GitHub
  Userland API Unhooker Project
  ☆111Apr 4, 2026Updated 2 months ago
• redteamertips / DinvokeDupetokenAndThreadSwitcheroo

  View on GitHub
  ☆26May 22, 2021Updated 5 years ago
• asaurusrex / Probatorum-EDR-Userland-Hook-Checker

  View on GitHub
  Project to check which Nt/Zw functions your local EDR is hooking
  ☆201Mar 21, 2021Updated 5 years ago
• xforcered / InlineExecute-Assembly

  View on GitHub
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆195Jul 9, 2021Updated 4 years ago
• mitchmoser / AtYourService

  View on GitHub
  Service Enumeration C# .NET Assembly
  ☆58Sep 14, 2021Updated 4 years ago
• SolomonSklash / SeasideBishop

  View on GitHub
  A C port of b33f's UrbanBishop
  ☆38Oct 1, 2020Updated 5 years ago
• outflanknl / FindObjects-BOF

  View on GitHub
  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
  ☆274May 3, 2023Updated 3 years ago
• Cobalt-Strike / obfuscator-llvm

  View on GitHub
  ☆58Jan 15, 2024Updated 2 years ago
• EspressoCake / PPLDump_BOF

  View on GitHub
  A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.
  ☆142Sep 24, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• med0x2e / vba2clr

  View on GitHub
  Running .NET from VBA
  ☆147Feb 11, 2023Updated 3 years ago
• MartinIngesen / TokenStomp

  View on GitHub
  C# implementation of the token privilege removal flaw discovered by @GabrielLandau/Elastic
  ☆143Feb 23, 2022Updated 4 years ago
• kyleavery / inject-assembly

  View on GitHub
  Inject .NET assemblies into an existing process
  ☆506Jan 19, 2022Updated 4 years ago
• rasta-mouse / ExternalC2.NET

  View on GitHub
  .NET implementation of Cobalt Strike's External C2 Spec
  ☆89Nov 12, 2021Updated 4 years ago
• antman1p / PrintTCCdb

  View on GitHub
  JXA script for Mythic that prints the TCC.db
  ☆15Apr 18, 2021Updated 5 years ago
• checkymander / Zolom

  View on GitHub
  C# Executable with embedded Python that can be used reflectively to run python code on systems without Python installed
  ☆242Aug 12, 2020Updated 5 years ago
• RiccardoAncarani / LiquidSnake

  View on GitHub
  LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript
  ☆346Sep 1, 2021Updated 4 years ago