rbmm / ARLLinks
☆24Updated 4 months ago
Alternatives and similar repositories for ARL
Users that are interested in ARL are comparing it to the libraries listed below
Sorting:
- Hooked create process injection for meterpreter☆23Updated 4 years ago
- Self Delete DLL☆23Updated last year
- Cobalt Strike notifications via NTFY.☆13Updated 9 months ago
- A bunch of shenanigans using functions, VEH and more☆24Updated 2 weeks ago
- ☆26Updated 4 months ago
- RunPE adapted for x64 and written in C, does not use RWX☆26Updated last year
- An example of COM hijacking using a proxy DLL.☆28Updated 3 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆56Updated 2 years ago
- ☆23Updated last year
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆36Updated last year
- A method to execute shellcode using RegisterWaitForInputIdle API.☆54Updated 2 years ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- ☆48Updated 4 years ago
- A lexer and parser for Sleep☆20Updated last month
- ☆30Updated 6 months ago
- Small tool to play with IOCs caused by Imageload events☆42Updated 2 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 2 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 3 years ago
- ☆27Updated 5 months ago
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆39Updated last year
- ☆43Updated last year
- ☆30Updated 2 months ago
- A simple BOF that disables some logging with NtSetInformationProcess☆13Updated last year
- Files for http://blog.deniable.org/posts/windows-callbacks/☆12Updated 2 years ago
- ☆54Updated 2 years ago
- ☆12Updated last year
- Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.☆28Updated 3 years ago
- A pure C version of SymProcAddress☆27Updated last year
- ☆36Updated last year