keowu / InstrumentationCallbackToolKit

Related projects ⓘ

Alternatives and complementary repositories for InstrumentationCallbackToolKit

• susMdT / effective-waffle
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆69Updated last year
• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆45Updated last year
• susMdT / clr-thing
  rust clr heap encryption (https://github.com/lap1nou/CLR_Heap_encryption), but no heap encryption.
  ☆12Updated 10 months ago
• rbmm / RtlClone
  ☆27Updated 4 months ago
• OtterHacker / CoffLoader
  ☆48Updated last year
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 2 years ago
• Idov31 / NidhoggCSharpApi
  C# API for Nidhogg rootkit
  ☆16Updated 6 months ago
• Kharos102 / ReadWriteDriverSample
  ☆21Updated 6 months ago
• NUL0x4C / ManualRsrcDataFetching
  Get your data from the resource section manually, with no need for windows apis
  ☆53Updated last month
• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆24Updated last week
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆34Updated 2 years ago
• Ap3x / COFF-Loader
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆39Updated 11 months ago
• b4rth0v5k1 / EarlyBirdNTDLL
  ☆34Updated last year
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆27Updated last year
• RobinFassinaMoschiniForks / TransitionalPeriod
  Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits
  ☆28Updated 2 years ago
• oldboy21 / SWAPPALA
  In-memory hiding technique
  ☆42Updated 5 months ago
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆36Updated 3 months ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆24Updated last year
• Meowmycks / etwunhook
  Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.
  ☆42Updated 8 months ago
• wolfcod / beacondbg
  Beacon Debugger
  ☆36Updated 3 weeks ago
• JetP1ane / Artemis
  Artemis - C++ Hell's Gate Syscall Implementation
  ☆30Updated last year
• Orange-Cyberdefense / EDRSnowblast
  This project is an EDRSandblast fork, adding some features and custom pieces of code.
  ☆21Updated last year
• jbaines-r7 / dellicious
  Enabled / Disable LSA Protection via BYOVD
  ☆62Updated 2 years ago
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆20Updated last week
• lleon1435 / Kernel_VADInjector
  Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver
  ☆52Updated last year
• joaoviictorti / coffeeldr
  A COFF Loader written in Rust
  ☆26Updated 3 weeks ago
• farinap5 / bitmap4shell
  A (quite) simple steganography algorithm to hide shellcodes within bitmap image.
  ☆21Updated 6 months ago
• bananabr / Givemeahand
  A PoC tool for exploiting leaked process and thread handles
  ☆30Updated 9 months ago
• waawaa / Hooked-Injector
  Hooked create process injection for meterpreter
  ☆23Updated 3 years ago
• GetRektBoy724 / SharpLoadLibrary
  An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.
  ☆53Updated 2 years ago