souzomain / Packer
Packer is a compact, fast and crosss-platform serialization library for store data in a buffer
☆21Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Packer
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆39Updated 11 months ago
- In-memory hiding technique☆42Updated 5 months ago
- Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD☆24Updated 10 months ago
- ☆27Updated 4 months ago
- ☆12Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated last year
- ☆48Updated last year
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆53Updated 2 years ago
- Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules☆42Updated last year
- A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP☆33Updated 3 years ago
- ☆17Updated 4 years ago
- ☆26Updated 2 years ago
- A PoC tool for exploiting leaked process and thread handles☆30Updated 9 months ago
- Load and execute a common object file format (COFF) in the current process☆25Updated 8 months ago
- A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and re…☆19Updated last year
- ☆14Updated 3 months ago
- Get your data from the resource section manually, with no need for windows apis☆53Updated last month
- run process as PPL Antimalware☆11Updated last year
- API Hammering with C++20☆34Updated 2 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- Hooked create process injection for meterpreter☆23Updated 3 years ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆28Updated 2 years ago
- POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…☆38Updated 3 years ago
- Artemis - C++ Hell's Gate Syscall Implementation☆30Updated last year
- Reimplementation of the KExecDD DSE bypass technique.☆42Updated 2 months ago
- ☆21Updated 6 months ago
- Research of modifying exported function names at runtime (C/C++, Windows)☆16Updated 5 months ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆20Updated 2 years ago
- A repository filled with ideas to break/detect direct syscall techniques☆26Updated 2 years ago