rek7 / ddoorLinks
DDoor - cross platform backdoor using dns txt records
☆30Updated 3 years ago
Alternatives and similar repositories for ddoor
Users that are interested in ddoor are comparing it to the libraries listed below
Sorting:
- ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Ima…☆40Updated 2 years ago
- ☆64Updated 2 years ago
- Yet another Windows DLL injector.☆38Updated 3 years ago
- A small library helping to parse commandline parameters (for C/C++)☆58Updated 3 months ago
- A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.☆40Updated 4 years ago
- Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses☆42Updated 4 years ago
- Injects shellcode into remote processes using direct syscalls☆79Updated 4 years ago
- An example of PE hollowing injection technique☆24Updated 6 years ago
- ☆15Updated 4 years ago
- Windows (ShadowMove) Socket Duplication☆86Updated 5 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆31Updated 5 years ago
- CSharp Writeups for HackSys Extreme Vulnerable Driver☆44Updated 3 years ago
- Source files for my posts☆17Updated 2 years ago
- A kernel mode Windows rootkit in development.☆49Updated 3 years ago
- PE file mapping and manipulation package.☆36Updated 3 years ago
- Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware☆56Updated last month
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆56Updated 3 years ago
- ☆14Updated 3 years ago
- C++ implementation of DOUBLEPULSAR usermode shellcode. Yet another Reflective DLL loader.☆30Updated 3 years ago
- Process Hollowing demonstration & explanation☆34Updated 4 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆31Updated 4 years ago
- Reverse shell without Windows cmd.exe, using ReactOS cmd.dll as shellcode☆23Updated 5 years ago
- Process Hollowing Packer☆29Updated 8 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 3 years ago
- ☆31Updated 5 years ago
- ☆36Updated 3 years ago
- improving zerosums smbdoor - a silent remote backdoor which abuses undoc. APIs in srvnet.sys☆50Updated 2 years ago
- the Open Source and Pure C++ Packer for eXecutables☆21Updated 2 years ago
- ☆70Updated 7 months ago
- Just another casual shellcode native loader☆24Updated 3 years ago