thecatenjoyer / singlestep_xorstubLinks
Stub for polymorphic code
☆12Updated 2 years ago
Alternatives and similar repositories for singlestep_xorstub
Users that are interested in singlestep_xorstub are comparing it to the libraries listed below
Sorting:
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆33Updated last year
- ☆31Updated 6 months ago
- ☆19Updated 4 years ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆32Updated 2 years ago
- Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.☆51Updated 3 months ago
- API Hammering with C++20☆49Updated 3 years ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆50Updated last year
- Intel 64/Windows low-level experiments☆60Updated last week
- A few examples of how to trap virtual memory access on Windows.☆33Updated 8 months ago
- A PE parser written in C++ which does not uses OOP. Helpful if you want to learn about PE parsing.☆18Updated 2 years ago
- A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class☆26Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 3 years ago
- Proof of Concept example for abusing Process Hacker 2 (v2.39.124)☆23Updated 10 months ago
- ☆49Updated 5 months ago
- ☆20Updated this week
- using the gpu to hide your payload☆59Updated 3 years ago
- Callstack spoofing using a VEH because VEH all the things.☆23Updated 5 months ago
- A payload delivery system which embeds payloads in an executable's icon file!☆74Updated last year
- CVE-2018-6066 using VBA☆67Updated 2 years ago
- A more reliable way of resolving syscall numbers in Windows☆53Updated last year
- Michelangelo REanimator bootkit and REcon 2023 talk slides/materials☆30Updated last year
- ☆37Updated 2 years ago
- A simple PoC to invoke an encrypted shellcode by using an hidden call☆116Updated 2 years ago
- Aplos an extremely simple fuzzer for Windows binaries.☆68Updated 6 months ago
- Slaying multi-language LLVM IR with obfuscation passes to achieve JIT execution☆114Updated last month
- In-memory hiding technique☆57Updated 7 months ago
- ☆32Updated last year
- the Open Source and Pure C++ Packer for eXecutables☆21Updated 2 years ago
- Examples of various container types for Python and Golang☆14Updated last week
- Easy encrypt/decrypt data with TPM☆25Updated last year