knight0x07 / NailaoLoader-Hiding-Execution-FlowLinks
NailaoLoader: Hiding Execution Flow via Patching
☆20Updated 8 months ago
Alternatives and similar repositories for NailaoLoader-Hiding-Execution-Flow
Users that are interested in NailaoLoader-Hiding-Execution-Flow are comparing it to the libraries listed below
Sorting:
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆76Updated 2 months ago
- Section-based payload obfuscation technique for x64☆64Updated last year
- Folder Or File Delete to Get System Shell on Current Session Desktop☆46Updated 9 months ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Updated 9 months ago
- ☆31Updated 9 months ago
- ☆50Updated 3 months ago
- ☆94Updated last year
- ☆53Updated last month
- A C#-implemented malware that dynamically modifies its own hash upon each execution to evade detection.☆17Updated 8 months ago
- Shellcode Loader Utilizing ETW Events☆67Updated 8 months ago
- Locate dlls and function addresses without PEB Walk and EAT parsing☆89Updated 3 months ago
- converts sRDI compatible dlls to shellcode☆32Updated 9 months ago
- A bunch of shenanigans using functions, VEH and more☆36Updated 4 months ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆60Updated 5 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆61Updated last year
- BOF for C2 framework☆44Updated 11 months ago
- A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.☆63Updated 8 months ago
- Post-Ex BOF tooling for Hannibal☆24Updated 11 months ago
- ☆31Updated last year
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆56Updated 4 months ago
- Creation and removal of Defender path exclusions and exceptions in C#.☆31Updated last year
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆23Updated 2 years ago
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆56Updated 6 months ago
- ☆100Updated 2 years ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Updated 8 months ago
- From C, Rust or Zig to binary shellcode compiler based on Mingw gcc. It allows using Win32 APIs and standard libraries without any change…☆49Updated last month
- remote process injections using pool party techniques☆67Updated 4 months ago
- use python on windows with full submodule support without installation☆30Updated 9 months ago
- One-header configurable C++20 COFF loader☆21Updated 3 months ago
- ☆38Updated 6 months ago