synacktiv / keebcapLinks
Win32 keylogger that supports all (non-ime using) languages correctly
☆50Updated last year
Alternatives and similar repositories for keebcap
Users that are interested in keebcap are comparing it to the libraries listed below
Sorting:
- ForsHops☆53Updated 2 months ago
- ☆61Updated last year
- shell code example☆49Updated 3 weeks ago
- Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar☆130Updated 9 months ago
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆63Updated last month
- Linker for Beacon Object Files☆70Updated this week
- ☆99Updated last year
- I have documented all of the AMSI patches that I learned till now☆72Updated 2 months ago
- Template-based generation of shellcode loaders☆77Updated last year
- ☆115Updated 2 years ago
- ☆86Updated 9 months ago
- ☆31Updated 5 months ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆76Updated last month
- Dll injection through code page id modification in registry. Based on jonas lykk research☆17Updated 2 years ago
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆51Updated 4 months ago
- Exploiting the KsecDD Windows driver through Server Silos☆71Updated 6 months ago
- A more reliable way of resolving syscall numbers in Windows☆49Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆123Updated 4 months ago
- kernel-mode DLL Injector☆82Updated last month
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆61Updated last year
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆48Updated last year
- ☆125Updated 9 months ago
- Execute dotnet app from unmanaged process☆75Updated 5 months ago
- ☆136Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆78Updated 10 months ago
- A collection of position independent coding resources☆78Updated 3 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆58Updated 6 months ago
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆62Updated last year
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆89Updated 11 months ago