nbaertsch / nimvokeLinks
Indirect syscalls + DInvoke made simple.
☆94Updated 8 months ago
Alternatives and similar repositories for nimvoke
Users that are interested in nimvoke are comparing it to the libraries listed below
Sorting:
- malware written for educational purposes☆66Updated 9 months ago
- Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.☆83Updated last month
- NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.☆30Updated last year
- Bypass user-land hooks by syscall tampering via the Trap Flag☆98Updated this week
- Sleep obfuscation for shellcode implants and their reflective shit☆52Updated last year
- PoC XLL builder in Python/Nim☆47Updated 2 years ago
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking☆122Updated last month
- Impersonate Tokens using only NTAPI functions☆79Updated 4 months ago
- Sample Rust Hooking Engine☆36Updated last year
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆161Updated last month
- ForsHops☆146Updated 5 months ago
- Terms of Use Conditional Access M365 Evilginx Phishlet☆39Updated 2 months ago
- A Mythic Agent written in PIC C.☆199Updated 6 months ago
- Threadless shellcode injection tool☆67Updated last year
- ☆122Updated 7 months ago
- A hoontr must hoont☆62Updated 2 weeks ago
- Simple EDR that injects a DLL into a process to place a hook on specific Windows API☆95Updated 2 years ago
- A small How-To on creating your own weaponized WSL file☆113Updated last month
- A process injection technique using only thread context manipulation☆37Updated last year
- Local SYSTEM auth trigger for relaying - X☆138Updated last month
- Your syscall factory☆124Updated 2 months ago
- ☆133Updated 6 months ago
- Lateral movement with DCOM DLL hijacking☆138Updated last month
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆104Updated 4 months ago
- A python script that automates a C2 Profile build☆43Updated 5 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated last year
- A collection of position independent coding resources☆92Updated 6 months ago
- StealthGuardian is a middleware layer that can be combined with adversary simulation tools to verify the resistance, detection level and…☆19Updated last year
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆120Updated last year
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆77Updated last year