spcnvdr / xchacha20
A small C library for the XChaCha20 stream cipher
☆35Updated last year
Alternatives and similar repositories for xchacha20:
Users that are interested in xchacha20 are comparing it to the libraries listed below
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…☆25Updated last year
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆26Updated 5 months ago
- In-memory hiding technique☆45Updated last week
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆41Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated last year
- call gates as stable comunication channel for NT x86 and Linux x86_64☆30Updated last year
- Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules☆42Updated last year
- ☆105Updated 2 years ago
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆24Updated last year
- Enabled / Disable LSA Protection via BYOVD☆65Updated 3 years ago
- Titan: A crappy Reflective Loader written in C and assembly for Cobalt Strike. Redirects DNS Beacon over DoH☆44Updated 3 years ago
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆45Updated 2 years ago
- A work in progress BOF/COFF loader in Rust☆46Updated last year
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆28Updated 2 years ago
- ☆84Updated 7 months ago
- Standalone Metasploit-like XOR encoder for shellcode☆46Updated 8 months ago
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆14Updated 6 months ago
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆61Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- A C++ PoC implementation for enumerating Windows Fibers directly from memory☆17Updated 8 months ago
- API Hammering with C++20☆42Updated 2 years ago
- EDR/AV Simulation for Malware Development☆12Updated last year
- ☆22Updated last year
- A simple PE loader.☆25Updated 2 years ago
- Reimplementation of the KExecDD DSE bypass technique.☆46Updated 4 months ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆28Updated 2 years ago
- An example of COM hijacking using a proxy DLL.☆25Updated 3 years ago
- Windows AppLocker Driver (appid.sys) LPE☆47Updated 5 months ago
- PoC arbitrary WPM without a process handle☆18Updated last year