jstrosch / sclauncherLinks
A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files from shellcode.
☆144Updated 10 months ago
Alternatives and similar repositories for sclauncher
Users that are interested in sclauncher are comparing it to the libraries listed below
Sorting:
- ☆114Updated last month
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆165Updated 2 months ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆115Updated 10 months ago
- ☆158Updated last month
- Collect Windows telemetry for Maldev☆349Updated 3 months ago
- A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.☆311Updated last year
- Finding secrets in kernel and user memory☆116Updated last year
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆210Updated 2 years ago
- A ProcessMonitor visualization application written in rust.☆180Updated last year
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆341Updated 3 months ago
- ☆105Updated 10 months ago
- ☆223Updated 4 months ago
- SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…☆390Updated 3 weeks ago
- Python tool to check rootkits in Windows kernel☆196Updated 3 months ago
- Tools for analyzing EDR agents☆228Updated 11 months ago
- Slides & Code snippets for a workshop held @ x33fcon 2024☆260Updated 11 months ago
- Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider☆174Updated 2 years ago
- ☆188Updated last year
- Exploitation of process killer drivers☆201Updated last year
- Configuration Extractors for Malware☆106Updated last month
- ☆119Updated last year
- EDRSandblast-GodFault☆265Updated last year
- Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…☆106Updated 3 months ago
- kernel callback removal (Bypassing EDR Detections)☆166Updated 2 months ago
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆109Updated 4 years ago
- Detect strange memory regions and DLLs☆183Updated 3 years ago
- The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls☆192Updated last year
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆114Updated 2 years ago
- ☆247Updated last year
- Use YARA rules on Time Travel Debugging traces☆90Updated last year