nullsection / SharpETW-PatchLinks
☆23Updated last year
Alternatives and similar repositories for SharpETW-Patch
Users that are interested in SharpETW-Patch are comparing it to the libraries listed below
Sorting:
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆56Updated 2 years ago
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52Updated last year
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆26Updated 2 years ago
- Lifetime AMSI bypass.☆35Updated last month
- ☆58Updated 3 years ago
- ☆48Updated last year
- Attack chain emulator. Write recipes for initial access easily☆20Updated 3 months ago
- Repo containing my public talks☆23Updated 2 years ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆38Updated 10 months ago
- Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL☆21Updated 2 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆67Updated 11 months ago
- Python module for running BOFs☆70Updated last year
- ☆75Updated 2 years ago
- Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption☆19Updated 2 years ago
- Small tool to play with IOCs caused by Imageload events☆42Updated 2 years ago
- ☆45Updated last year
- Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation☆31Updated 2 years ago
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆83Updated 2 years ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…☆51Updated last year
- ☆38Updated last year
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆53Updated 5 years ago
- Change up a binary's embedded resources with this little creature.☆34Updated 5 years ago
- A module for CME that spiders across a domain.☆35Updated 2 years ago
- A VSCode devcontainer for development of COFF files with batteries included.☆49Updated last year
- Extension functionality for the NightHawk operator client☆27Updated last year
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- ☆14Updated last year
- macOS dylib stager☆33Updated 4 months ago