sensepost / pipetapLinks
A Windows Named Pipe Multi-tool / Proxy
☆287Updated 2 months ago
Alternatives and similar repositories for pipetap
Users that are interested in pipetap are comparing it to the libraries listed below
Sorting:
- Comprehensive Windows Syscall Extraction & Analysis Framework☆161Updated 5 months ago
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆120Updated last year
- "Service-less" driver loading☆177Updated last year
- Activation Context Hijack☆169Updated 6 months ago
- Windows rootkit designed to work with BYOVD exploits☆214Updated last year
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆160Updated 2 weeks ago
- Generate a proxy dll for arbitrary dll☆220Updated last year
- A collection of PoCs to do common things in unconventional ways☆122Updated 5 months ago
- Injecting DLL into LSASS at boot☆156Updated 9 months ago
- Obex ��– Blocking unwanted DLLs in user mode☆280Updated 4 months ago
- Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…☆269Updated last year
- This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.☆294Updated 3 months ago
- Hells Hollow Windows 11 Rootkit technique to Hook the SSDT via Alt Syscalls☆213Updated 5 months ago
- Code execution/injection technique using DLL PEB module structure manipulation☆220Updated 8 months ago
- Payload encoding utility to effectively lower payload entropy.☆123Updated 9 months ago
- Admin to Kernel code execution using the KSecDD driver☆264Updated last year
- early cascade injection PoC based on Outflanks blog post☆236Updated last year
- SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows applications installer and up…☆260Updated last week
- Bypass user-land hooks by syscall tampering via the Trap Flag☆139Updated 5 months ago
- Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…☆198Updated 7 months ago
- Direct access to NTFS volumes☆293Updated 5 months ago
- Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks☆136Updated last year
- DLL proxying for lazy people☆196Updated 2 months ago
- MIPS VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator.☆124Updated last year
- A 64 bit executable junk code engine for polymorphic malware.☆75Updated 7 months ago
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆358Updated last year
- IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.☆105Updated 2 years ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆165Updated 6 months ago
- Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…☆59Updated 4 months ago
- A Mythic Agent written in PIC C.☆206Updated last year