peterferrie / win-exec-calc-shellcodeLinks
A small, null-free Windows shellcode that executes calc.exe (x86/x64, all OS/SPs)
☆412Updated last year
Alternatives and similar repositories for win-exec-calc-shellcode
Users that are interested in win-exec-calc-shellcode are comparing it to the libraries listed below
Sorting:
- Examples of leaking Kernel Mode information from User Mode on Windows☆604Updated 7 years ago
- My implementation of enSilo's Process Doppelganging (PE injection technique)☆610Updated 2 years ago
- An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.☆520Updated 5 years ago
- Extract Windows Defender database from vdm files and unpack it☆440Updated 5 years ago
- This is a standalone exploit for a vulnerable feature in Capcom.sys☆304Updated 2 years ago
- An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security☆324Updated 7 years ago
- Windows Kernel Drivers fuzzer☆348Updated 8 years ago
- Shellcode Compiler☆1,105Updated 9 months ago
- Obfuscate specific windows apis with different apis☆1,000Updated 4 years ago
- PowerLoaderEx - Advanced Code Injection Technique for x32 / x64☆368Updated 8 years ago
- Quickly debug shellcode extracted during malware analysis☆602Updated 2 years ago
- This is a simple example and explanation of obfuscating API resolution via hashing☆235Updated 5 years ago
- ☆398Updated 8 years ago
- windows syscall table from xp ~ 10 rs4☆353Updated 6 years ago
- Just another Windows Process Injection☆399Updated 4 years ago
- ☆814Updated 5 years ago
- A memory scanning evasion technique☆869Updated 8 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆298Updated 6 years ago
- Universal Unhooking☆321Updated 6 years ago
- RpcView is a free tool to explore and decompile Microsoft RPC interfaces☆976Updated last year
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆394Updated 5 years ago
- Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted fi…☆660Updated last year
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆389Updated 4 years ago
- Dump of win32k POCs for bugs I've found☆375Updated 3 years ago
- Code that allows running another windows PE in the same address space as the host process.☆446Updated 8 years ago
- Canadian Furious Beaver is a ProcMon-style tool designed only for capturing IRPs sent to any Windows driver.☆321Updated last year
- Position Independent Windows Shellcode Written in C☆291Updated 6 years ago
- InfectPE - Inject custom code into PE file [This project is not maintained anymore]☆324Updated 8 years ago
- Adaptive DLL hijacking / dynamic export forwarding☆755Updated 4 years ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆812Updated 3 years ago