Alternatives and similar repositories for PPL-0day:

Users that are interested in PPL-0day are comparing it to the libraries listed below

• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆72Updated last month
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆73Updated 7 months ago
• NoahKirchner / speedloader
  Rust template/library for implementing your own COFF loader
  ☆49Updated 2 months ago
• Retr0-code / hash-dumper
  Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…
  ☆60Updated last year
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆67Updated last month
• Teach2Breach / hollow_rs
  A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.
  ☆30Updated last month
• HulkOperator / CallStackSpoofer
  ☆27Updated 3 months ago
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆150Updated 4 months ago
• Teach2Breach / pool_party_rs
  remote process injections using pool party techniques
  ☆56Updated last month
• grayhatkiller / SharpExShell
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆69Updated 10 months ago
• mannyfred / SentinelBruh
  Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
  ☆42Updated 8 months ago
• rbmm / SC
  shell code example
  ☆33Updated 2 weeks ago
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆61Updated last year
• xforcered / VectoredExceptionHandling
  ☆28Updated 7 months ago
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆63Updated 9 months ago
• Krypteria / Proxll
  Tool designed to simplify the generation of proxy DLLs while addressing common conflicts related to windows.h
  ☆37Updated 5 months ago
• xforcered / Being-A-Good-CLR-Host
  ☆97Updated 2 months ago
• passthehashbrowns / Being-A-Good-CLR-Host
  ☆53Updated 2 months ago
• 0xRedpoll / SignalKeyBOF
  BOF to decrypt Signal Desktop chat logs
  ☆62Updated last month
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆38Updated 8 months ago
• Teach2Breach / early_cascade_inj_rs
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆56Updated 4 months ago
• xforcered / ForsHops
  ForsHops
  ☆63Updated this week
• nbaertsch / Shrike
  Hunting and injecting RWX 'mockingjay' DLLs in pure nim
  ☆57Updated 3 months ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• passthehashbrowns / VectoredExceptionHandling
  ☆85Updated 7 months ago
• NtDallas / Draugr
  BOF with Synthetic Stackframe
  ☆136Updated last month
• securifybv / BOFRyptor
  ☆121Updated last year
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆76Updated 7 months ago
• safedv / GPOAnalyzer
  GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.
  ☆25Updated 9 months ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆59Updated 7 months ago