malwareninja / Mockingjay---Vulnerable-DLL-FinderLinks
Mockingjay Process Injection Vulnerable DLL Finder
β19Updated last year
Alternatives and similar repositories for Mockingjay---Vulnerable-DLL-Finder
Users that are interested in Mockingjay---Vulnerable-DLL-Finder are comparing it to the libraries listed below
Sorting:
- π‘οΈ A multi-user malleable C2 framework targeting Windows. Written in C++ and Pythonβ45Updated last year
- Reimplementation of the KExecDD DSE bypass technique.β49Updated 9 months ago
- β36Updated 2 years ago
- β32Updated 6 months ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.β64Updated 2 years ago
- a demo module for the kaine agent to execute and inject assembly modulesβ39Updated 10 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.β82Updated 4 months ago
- converts sRDI compatible dlls to shellcodeβ29Updated 5 months ago
- ForsHopsβ53Updated 3 months ago
- β37Updated 2 years ago
- A POC of a new βthreadlessβ process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and reβ¦β25Updated last year
- Simple PoC to locate hooked functions by EDR in ntdll.dllβ37Updated last year
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loaderβ50Updated last year
- β86Updated 10 months ago
- shell code exampleβ49Updated last month
- Linker for Beacon Object Filesβ116Updated this week
- Windows C++ Implant for Exploration C2β31Updated last month
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial β¦β49Updated 5 months ago
- Threadless shellcode injection toolβ65Updated 10 months ago
- Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.β47Updated last year
- This program is used to perform reflective DLL Injection to a remote process specified by the user.β65Updated last year
- Shellcode Loader Utilizing ETW Eventsβ63Updated 4 months ago
- A tool that bypasses Windows Defender by manually loading DLLs, parsing EAT directly, and updating IAT with unhooked functions to run Mβ¦β21Updated 11 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.β74Updated 10 months ago
- Sleep Obfuscationβ45Updated 2 years ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentialsβ52Updated last month
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process holβ¦β70Updated last year
- API Hammering with C++20β46Updated 2 years ago
- Various methods of executing shellcodeβ70Updated 2 years ago
- abusing Process Hacker driver to terminate other processes (BYOVD)β83Updated 2 years ago