knight0x07 / NailaoLoader-Hiding-Execution-Flow
NailaoLoader: Hiding Execution Flow via Patching
☆19Updated last month
Alternatives and similar repositories for NailaoLoader-Hiding-Execution-Flow:
Users that are interested in NailaoLoader-Hiding-Execution-Flow are comparing it to the libraries listed below
- ☆25Updated 2 months ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆45Updated 2 months ago
- BOF for C2 framework☆40Updated 4 months ago
- ☆20Updated 3 weeks ago
- Creation and removal of Defender path exclusions and exceptions in C#.☆30Updated last year
- Folder Or File Delete to Get System Shell on Current Session Desktop☆38Updated 2 months ago
- ☆28Updated last week
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆41Updated 8 months ago
- ☆20Updated 9 months ago
- A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation☆36Updated last year
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆24Updated 6 months ago
- command control framework☆20Updated this week
- use python on windows with full submodule support without installation☆28Updated 2 months ago
- Execute dotnet app from unmanaged process☆71Updated 3 months ago
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆30Updated last year
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆30Updated 9 months ago
- Section-based payload obfuscation technique for x64☆59Updated 7 months ago
- in-process powershell runner for BRC4☆45Updated last year
- Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282)☆22Updated 2 months ago
- ☆21Updated 11 months ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆25Updated 2 months ago
- ForsHops☆22Updated this week
- Beacon Debugger☆40Updated 5 months ago
- Proxy function calls through the thread pool with ease☆23Updated last month
- A simple rpc2socks alternative in pure Go.☆28Updated 8 months ago
- ☆24Updated last month
- Exploiting the KsecDD Windows driver through Server Silos☆50Updated 4 months ago
- Hooked create process injection for meterpreter☆23Updated 3 years ago
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆43Updated 2 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆31Updated 10 months ago