tedyyu / ProcDumpEx
ProcDumpEx = ProcDump in batch mode
☆15Updated 4 years ago
Alternatives and similar repositories for ProcDumpEx:
Users that are interested in ProcDumpEx are comparing it to the libraries listed below
- RPC Monitor based on The ETW Microsoft-Windows-Rpc provider☆24Updated 5 years ago
- TrojanDropper/PS.Maloader.d☆12Updated 3 years ago
- SyscallLoader☆10Updated 3 years ago
- This PoC uses two diferent technics for stealing the primary token from all running processes, showing that is possible to impersonate a…☆57Updated 3 years ago
- impersonate trustedinstaller by fiddling with tokens☆17Updated 3 years ago
- 从admin冲到TrustedInstaller☆17Updated 2 years ago
- Files for http://deniable.org/windows/windows-callbacks☆25Updated 4 years ago
- Implementation of ITaskHandler in C++☆13Updated 2 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆21Updated 5 years ago
- iSwordSDK (Provide Powerful Kernel API For Ring3 Applications)☆15Updated 3 years ago
- ☆9Updated last year
- Source files for my posts☆16Updated last year
- Simple .NET profiler shellcode loader☆10Updated 3 years ago
- ksc4cpp is a shellcode framework for windows kernel based on C++☆22Updated 2 years ago
- A Simple ShellcodeLoader☆11Updated 3 years ago
- ☆26Updated 3 years ago
- Yet another Windows DLL injector.☆38Updated 3 years ago
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…☆33Updated 3 years ago
- ☆52Updated 2 years ago
- A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.☆10Updated 3 years ago
- ComObject Shellcode Loader with fake return address☆12Updated 3 years ago
- ☆11Updated 3 years ago
- ☆37Updated last year
- Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)☆11Updated 2 years ago
- A simple PE loader.☆25Updated 2 years ago
- A Study in Obfuscation: Analyzing the effect of various techniques to bypass AV engines☆41Updated 2 years ago
- Injects position-dependent code into a code cave in an executable file, and applies relocations.☆22Updated last year
- 32 bit process inject shellcode to 32 bit process and 64 bit process☆29Updated last year
- CSharp Writeups for HackSys Extreme Vulnerable Driver☆43Updated 3 years ago
- 针对于AzureAttestService服务的本地提权Eop,微软表示已经进行修复☆2Updated 3 years ago