knight0x07 / NailaoLoader-Hiding-Execution-FlowLinks
NailaoLoader: Hiding Execution Flow via Patching
☆21Updated 3 months ago
Alternatives and similar repositories for NailaoLoader-Hiding-Execution-Flow
Users that are interested in NailaoLoader-Hiding-Execution-Flow are comparing it to the libraries listed below
Sorting:
- ☆27Updated 5 months ago
- ☆30Updated 2 months ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆49Updated 5 months ago
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆21Updated last year
- Beacon Debugger☆40Updated 7 months ago
- BOF for C2 framework☆41Updated 7 months ago
- .NET tool used to enrich RPC telemetry☆62Updated last week
- Less sugar (entropy) for your binaries☆25Updated 3 months ago
- Shellcode capable of bypassing EAF / IAF mitigations☆12Updated 2 years ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆60Updated last year
- A work in progress BOF/COFF loader in Rust☆50Updated 2 years ago
- Creation and removal of Defender path exclusions and exceptions in C#.☆31Updated last year
- A C#-implemented malware that dynamically modifies its own hash upon each execution to evade detection.☆12Updated 4 months ago
- Section-based payload obfuscation technique for x64☆61Updated 10 months ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆23Updated last year
- Rust template/library for implementing your own COFF loader☆50Updated 4 months ago
- A bunch of shenanigans using functions, VEH and more☆24Updated 2 weeks ago
- ☆30Updated 3 months ago
- Proxy function calls through the thread pool with ease☆28Updated 3 months ago
- ☆32Updated 6 months ago
- use python on windows with full submodule support without installation☆28Updated 5 months ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Updated 4 months ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆42Updated 2 years ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆36Updated last year
- A simple C++ Windows tool to get information about processes exposing named pipes.☆38Updated 3 months ago
- How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.☆19Updated 2 months ago
- e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!☆24Updated 10 months ago
- various methods of making API calls☆17Updated 4 months ago
- Unix Process hollowing in rust☆22Updated 6 months ago