ntdll0 / HVNC
My POC implementation of HVNC (Hidden VNC / Hidden Desktop)
☆22Updated 3 months ago
Alternatives and similar repositories for HVNC:
Users that are interested in HVNC are comparing it to the libraries listed below
- Research into removing strings & API call references at compile-time (Anti-Analysis)☆25Updated 10 months ago
- Fud Runpe Av Evasion / All Av Bypass☆33Updated 2 years ago
- Implementing the ghostly hollowing PE injection technique using tampered syscalls.☆144Updated last month
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆44Updated last year
- LKM rootkit for modern kernels, with DNS C2 and a simple web interface☆65Updated 2 weeks ago
- Decrypting yandex browser passwords☆13Updated 2 weeks ago
- simple user-mode Rootkit☆103Updated 2 years ago
- A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal console builder.☆44Updated last week
- Malware?☆69Updated 6 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆74Updated 8 months ago
- Shellcode Loader Utilizing ETW Events☆63Updated last month
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆42Updated 9 months ago
- Classic Process Injection with Memory Evasion Techniques implemantation☆69Updated last year
- ☆36Updated 2 years ago
- shellcode loader that uses indirect syscalls written in D Lang The loader bypasses user-mode hooks by resolving system calls manually fro…☆9Updated 7 months ago
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.☆72Updated last year
- Windows AppLocker Driver (appid.sys) LPE☆54Updated 8 months ago
- ☆23Updated 6 months ago
- stack spoofing☆84Updated 5 months ago
- DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…☆41Updated 11 months ago
- Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html☆122Updated 3 years ago
- It was a great run, but everything must come to an end. Please don’t contact me. Before I go, here’s a final gift :)☆23Updated last month
- ☆34Updated last year
- Next gen process injection technique☆52Updated 4 years ago
- Test antiviruses☆12Updated last year
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆89Updated 10 months ago
- Nim process hollowing loader☆57Updated 8 months ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆62Updated last year
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆84Updated 2 years ago
- Proof of concept code for thread pool based process injection in Windows.☆115Updated 3 weeks ago