A tracker DLL which enables 'NTAPI->Syscall' tracking whenever it is loaded. It calls 'NtSetInformationProcess' API call with a callback hook and 'ProcessInstrumentationCallback' class to track all syscalls being performed via the userland.
☆14Oct 21, 2024Updated last year
Alternatives and similar repositories for PI-Tracker
Users that are interested in PI-Tracker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Section-based payload obfuscation technique for x64☆64Aug 8, 2024Updated last year
- ExportHider: Generating Export Table during Runtime to Hide the Exported Functions from the DLL File.☆33Apr 12, 2026Updated 2 months ago
- ☆111Aug 21, 2024Updated last year
- A Simple PoC☆22May 24, 2024Updated 2 years ago
- A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library☆24Nov 13, 2025Updated 7 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆66Mar 19, 2024Updated 2 years ago
- Repository to gather the .NET malware I will be developing☆18Mar 7, 2026Updated 3 months ago
- A collection of position independent coding resources☆120Nov 15, 2025Updated 7 months ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆89Apr 11, 2023Updated 3 years ago
- A pure C version of SymProcAddress☆30Mar 17, 2024Updated 2 years ago
- ☆30Jul 26, 2024Updated last year
- ☆127Sep 1, 2024Updated last year
- A VSCode plugin to assist with BOF development.☆37Aug 14, 2024Updated last year
- Unused DLL hollowing PoC in Nim☆17Jan 31, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆13Jul 14, 2022Updated 3 years ago
- ☆124Oct 9, 2023Updated 2 years ago
- ☆103Oct 7, 2023Updated 2 years ago
- ☆46Jun 21, 2023Updated 2 years ago
- Halos Gate-based NTAPI Unhooker☆52Apr 21, 2022Updated 4 years ago
- A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system☆44Oct 30, 2024Updated last year
- A simple BOF (Beacon Object File) to search files in the system☆17Dec 2, 2023Updated 2 years ago
- Linux Sleep Obfuscation☆129Jan 7, 2024Updated 2 years ago
- Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+☆37Dec 1, 2025Updated 6 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Threadless shellcode injection tool☆68Aug 5, 2024Updated last year
- Command and Control Framework using powershell implants☆36Jun 17, 2025Updated 11 months ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆46Apr 27, 2023Updated 3 years ago
- Crystal Palace library for proxying Nt API calls via the Threadpool. Updated for call gadgets.☆23Nov 11, 2025Updated 7 months ago
- ☆112Feb 17, 2025Updated last year
- Reproducing the SkeletonKey malware.☆11Apr 6, 2024Updated 2 years ago
- Rust implementation of the Process Herpaderping☆26Jul 6, 2023Updated 2 years ago
- Activation Context Hijack☆171May 4, 2026Updated last month
- Linux dynamic loader implimentation for self containment☆12Jul 7, 2019Updated 6 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Moonwalk++: Simple POC Combining StackMoonwalking and Memory Encryption☆226Dec 17, 2025Updated 5 months ago
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆326Apr 12, 2024Updated 2 years ago
- This repository contains AI-generated analysis reports produced as part of an automated N-day research pipeline targeting Microsoft compo…☆95Apr 28, 2026Updated last month
- ☆47Dec 5, 2023Updated 2 years ago
- Toolkit of Projects to attack and evade Event Trace for Windows☆27Aug 28, 2025Updated 9 months ago
- Just some random Red Team Scripts that can be useful☆153May 12, 2026Updated last month
- Lockless BOF☆79May 2, 2025Updated last year