lawiet47 / pylogite
Metamorphic Code Generator & Loader
☆12Updated 3 years ago
Related projects: ⓘ
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆14Updated 3 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆49Updated 3 years ago
- AMSI detection PoC☆30Updated 4 years ago
- ☆15Updated 3 years ago
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆19Updated 3 years ago
- The repository accompanying the Buer Emulation workshop☆23Updated 3 years ago
- ☆36Updated 3 years ago
- A C port of b33f's UrbanBishop☆35Updated 3 years ago
- Files for generating a C# source file that allows for memory-mapping "niceness" and then executing said "niceness"☆31Updated 5 years ago
- 7 days of Red Teaming TTPs that your favorite tools may use to acheive a post exploitation goal☆16Updated 3 years ago
- ☆23Updated 2 years ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆29Updated 2 years ago
- A repository where I share my injection implemintations☆28Updated 4 years ago
- File Write Weapon for Privilege Escalation To get SYSTEM☆17Updated 4 years ago
- Malware vulnerability research. Coming soon..☆12Updated 4 years ago
- Extended Process List (Search functionality)☆27Updated 3 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 3 years ago
- ☆17Updated 3 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 2 years ago
- A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.☆33Updated 2 years ago
- A simple injector that uses LoadLibraryA☆15Updated 4 years ago
- ☆36Updated 3 years ago
- NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…☆12Updated last year
- A small commented POC for removing API hooks placed by AV/EDR.☆33Updated 4 years ago
- ☆44Updated 3 years ago
- Dump Lsass Memory Using a Reflective Dll☆14Updated 2 years ago
- ☆50Updated this week
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Updated 3 years ago
- ☆28Updated 6 years ago
- This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.☆15Updated 2 years ago