paranoidninja/PI-Tracker external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

paranoidninja/PI-Tracker

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/paranoidninja/PI-Tracker)

Close

paranoidninja / PI-TrackerView on GitHubMore

• External links
• Readme badge

A tracker DLL which enables 'NTAPI->Syscall' tracking whenever it is loaded. It calls 'NtSetInformationProcess' API call with a callback hook and 'ProcessInstrumentationCallback' class to track all syscalls being performed via the userland.

☆14Oct 21, 2024Updated last year

Alternatives and similar repositories for PI-Tracker

Users that are interested in PI-Tracker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• pygrum / gimmick

  View on GitHub
  Section-based payload obfuscation technique for x64
  ☆64Aug 8, 2024Updated last year
• passthehashbrowns / VectoredExceptionHandling

  View on GitHub
  ☆108Aug 21, 2024Updated last year
• BambiZombie / ThreadlessSpawn

  View on GitHub
  A Simple PoC
  ☆22May 24, 2024Updated last year
• preludeorg / Regstoration

  View on GitHub
  A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library
  ☆24Nov 13, 2025Updated 5 months ago
• fin3ss3g0d / IoDllProxyLoad

  View on GitHub
  DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
  ☆66Mar 19, 2024Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• silentwarble / PIC-Library

  View on GitHub
  A collection of position independent coding resources
  ☆111Nov 15, 2025Updated 5 months ago
• ricardojoserf / SharpNado

  View on GitHub
  Repository to gather the .NET malware I will be developing
  ☆17Mar 7, 2026Updated last month
• maliciousgroup / RDI-SRDI

  View on GitHub
  This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".
  ☆88Apr 11, 2023Updated 3 years ago
• a7t0fwa7 / SymProcSleuth

  View on GitHub
  A pure C version of SymProcAddress
  ☆30Mar 17, 2024Updated 2 years ago
• Allevon412 / SyscallTempering

  View on GitHub
  ☆31Jul 26, 2024Updated last year
• Octoberfest7 / enumhandles_BOF

  View on GitHub
  ☆127Sep 1, 2024Updated last year
• EspressoCake / BOF_NativeAPI_Definitions-VSCode

  View on GitHub
  A VSCode plugin to assist with BOF development.
  ☆37Aug 14, 2024Updated last year
• zimnyaa / nim-noload-dll-hollowing

  View on GitHub
  Unused DLL hollowing PoC in Nim
  ☆17Jan 31, 2022Updated 4 years ago
• clod81 / loader_process_hollow_copy_in_chunk

  View on GitHub
  About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once
  ☆13Jul 14, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• securifybv / BOFRyptor

  View on GitHub
  ☆124Oct 9, 2023Updated 2 years ago
• lap1nou / CLR_Heap_encryption

  View on GitHub
  ☆102Oct 7, 2023Updated 2 years ago
• kyleavery / pendulum

  View on GitHub
  Linux Sleep Obfuscation
  ☆114Jan 7, 2024Updated 2 years ago
• OffenseTeacher / Steganim

  View on GitHub
  ☆46Jun 21, 2023Updated 2 years ago
• GetRektBoy724 / HalosUnhooker

  View on GitHub
  Halos Gate-based NTAPI Unhooker
  ☆52Apr 21, 2022Updated 3 years ago
• 0xTriboulet / T-70

  View on GitHub
  A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system
  ☆44Oct 30, 2024Updated last year
• MaorSabag / fileSearcher

  View on GitHub
  A simple BOF (Beacon Object File) to search files in the system
  ☆16Dec 2, 2023Updated 2 years ago
• SAERXCIT / LibTP_Gadget

  View on GitHub
  Crystal Palace library for proxying Nt API calls via the Threadpool. Updated for call gadgets.
  ☆20Nov 11, 2025Updated 5 months ago
• GhostManager / cobalt_sync

  View on GitHub
  Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+
  ☆36Dec 1, 2025Updated 4 months ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• itaymigdal / PartyLoader

  View on GitHub
  Threadless shellcode injection tool
  ☆68Aug 5, 2024Updated last year
• JCSteiner / SGCC---public

  View on GitHub
  Command and Control Framework using powershell implants
  ☆36Jun 17, 2025Updated 9 months ago
• d4rkiZ / EmbedExeLnk-

  View on GitHub
  EmbedExeLnk by x86matthew modified by d4rkiZ
  ☆45Apr 27, 2023Updated 2 years ago
• ghostbyt3 / nday-automation-ai

  View on GitHub
  This repository contains AI-generated analysis reports produced as part of an automated N-day research pipeline targeting Microsoft compo…
  ☆84Mar 20, 2026Updated 3 weeks ago
• rasta-mouse / SpawnWith

  View on GitHub
  ☆111Feb 17, 2025Updated last year
• lem0nSec / SkeletonKey

  View on GitHub
  Reproducing the SkeletonKey malware.
  ☆11Apr 6, 2024Updated 2 years ago
• secur30nly / rust-herpaderping

  View on GitHub
  Rust implementation of the Process Herpaderping
  ☆26Jul 6, 2023Updated 2 years ago
• klezVirus / Moonwalk--

  View on GitHub
  Moonwalk++: Simple POC Combining StackMoonwalking and Memory Encryption
  ☆215Dec 17, 2025Updated 3 months ago
• Kudaes / Eclipse

  View on GitHub
  Activation Context Hijack
  ☆172Aug 3, 2025Updated 8 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• mgood7123 / universal-dynamic-loader

  View on GitHub
  Linux dynamic loader implimentation for self containment
  ☆12Jul 7, 2019Updated 6 years ago
• senzee1984 / InflativeLoading

  View on GitHub
  Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.
  ☆328Apr 12, 2024Updated 2 years ago
• pard0p / Remote-BOF-Runner

  View on GitHub
  Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …
  ☆94Jan 2, 2026Updated 3 months ago
• trainr3kt / MemReader_BoF

  View on GitHub
  ☆46Dec 5, 2023Updated 2 years ago
• S12cybersecurity / NtUnhook

  View on GitHub
  Selective In-Memory Syscall Unhooking, a stealthy method to bypass user-mode hooks in ntdll.dll
  ☆38Mar 11, 2026Updated last month
• api0cradle / RedTeamScripts

  View on GitHub
  Just some random Red Team Scripts that can be useful
  ☆153Jun 28, 2024Updated last year
• antroguy / LocklessBof

  View on GitHub
  Lockless BOF
  ☆79May 2, 2025Updated 11 months ago