thiagopeixoto / allsysnoLinks
This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
☆15Updated 3 years ago
Alternatives and similar repositories for allsysno
Users that are interested in allsysno are comparing it to the libraries listed below
Sorting:
- AMSI detection PoC☆32Updated 5 years ago
- The repository accompanying the Buer Emulation workshop☆24Updated 4 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆52Updated 6 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆54Updated 4 years ago
- ☆24Updated 3 years ago
- Specialized tool to dump Position Independent Code.☆22Updated 5 years ago
- Dump Lsass Memory Using a Reflective Dll☆14Updated 3 years ago
- ☆15Updated 2 years ago
- Tool to manage user privileges☆29Updated 5 years ago
- Playing with PE's and Building Structures by Hand☆22Updated 3 years ago
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Updated 4 years ago
- ☆48Updated 4 years ago
- DLL hijacking vulnerability scanner and PE infector tool☆18Updated 7 years ago
- Some stuff for PHD2021☆14Updated 3 months ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆33Updated 2 years ago
- A repository where I share my injection implemintations☆29Updated 5 years ago
- A small commented POC for removing API hooks placed by AV/EDR.☆34Updated 5 years ago
- Resolve syscall numbers at runtime for all Windows versions.☆61Updated 9 months ago
- Loading and executing shellcode in C# without PInvoke.☆22Updated 3 years ago
- A library to parse, modify, and implement Malleable C2 profiles☆26Updated 6 years ago
- all credits go to @mgeeky☆64Updated 3 years ago
- Simple skeleton for a CPP DLL☆38Updated 5 years ago
- A simple Linux in-memory .so loader☆30Updated 2 years ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆19Updated 4 years ago
- Simple and sane cryptographic wrapper library.☆27Updated 2 years ago
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆24Updated 3 years ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆17Updated 2 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 3 years ago
- ☆28Updated 7 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 4 years ago