rbmm / TL-TASKLinks
☆20Updated 2 weeks ago
Alternatives and similar repositories for TL-TASK
Users that are interested in TL-TASK are comparing it to the libraries listed below
Sorting:
- A more reliable way of resolving syscall numbers in Windows☆52Updated last year
- ☆31Updated 10 months ago
- ☆30Updated last month
- BOF for C2 framework☆43Updated 10 months ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆26Updated 5 months ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆78Updated last year
- miscellaneous codes☆34Updated 2 years ago
- A pure C version of SymProcAddress☆29Updated last year
- use python on windows with full submodule support without installation☆31Updated 8 months ago
- A lexer and parser for Sleep☆20Updated 4 months ago
- ☆38Updated 5 months ago
- Section-based payload obfuscation technique for x64☆64Updated last year
- ☆23Updated last year
- ☆37Updated 6 months ago
- ☆59Updated 5 months ago
- Reports on Driver, LSASS and other security services mitigations☆30Updated last month
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆35Updated last year
- Mentally ill EtwTi parser☆65Updated 3 weeks ago
- ☆50Updated 6 months ago
- Callstack spoofing using a VEH because VEH all the things.☆23Updated 6 months ago
- EvtPsst☆55Updated last year
- Hooked create process injection for meterpreter☆23Updated 4 years ago
- ☆47Updated 2 years ago
- ☆93Updated last year
- RunPE adapted for x64 and written in C, does not use RWX☆28Updated last year
- Sample Rust Hooking Engine☆36Updated last year
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆14Updated 2 years ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆50Updated last year
- Dll injection through code page id modification in registry. Based on jonas lykk research☆17Updated 3 years ago
- Demoting PPL anti-malware services to less than a guest user☆63Updated 8 months ago