m417z / winapiexec
A small tool that allows to run WinAPI functions through command line parameters
☆176Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for winapiexec
- PE Viewer☆151Updated last week
- A global injection and hooking example☆123Updated last year
- Explore Kernel Objects on Windows☆200Updated 9 months ago
- RPC Monitor tool based on Event Tracing for Windows☆328Updated 2 months ago
- Killing your preferred antimalware by abusing native symbolic links and NT paths.☆351Updated 2 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆236Updated 2 years ago
- This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret …☆231Updated last year
- Run any executable as SYSTEM account (no service required)☆121Updated 5 months ago
- Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers☆157Updated last week
- ☆134Updated 2 years ago
- Achieve execution using a custom keyboard layout☆161Updated last year
- A list of all the DLLs export in C:\windows\system32\☆211Updated 2 years ago
- Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)☆137Updated 7 months ago
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆258Updated 3 weeks ago
- The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls☆164Updated 9 months ago
- Load and execute COFF files and Cobalt Strike BOFs in-memory☆193Updated 2 years ago
- DSE bypass using a leaked cert and adjusting the current clock.☆133Updated 2 years ago
- Enumerate various traits from Windows processes as an aid to threat hunting☆183Updated 2 years ago
- ☆182Updated 2 years ago
- A tabbed UI for Microsoft's Hyper-V☆202Updated 2 months ago
- ☆72Updated 7 years ago
- An easily modifiable shellcode template for Windows x64 written in C☆194Updated last year
- UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red …☆341Updated 2 years ago
- Windows System Programming Experiments☆216Updated 2 years ago
- Some Code Samples for Windows based Inter-Process-Communication (IPC)☆158Updated 8 months ago
- Windows Filtering Platform Explorer☆210Updated last month
- ☆105Updated last year
- Single header version of System Informer's phnt library.☆184Updated last week
- ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detecti…☆291Updated 7 months ago
- Exploitation of process killer drivers☆186Updated last year