DLL Unhooking
☆13Mar 26, 2021Updated 4 years ago
Alternatives and similar repositories for Doge-Unhook
Users that are interested in Doge-Unhook are comparing it to the libraries listed below
Sorting:
- Preventing 3rd Party DLLs from Injecting into your Malware☆25Aug 31, 2021Updated 4 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- Windows NTLMSSP library☆10Aug 27, 2021Updated 4 years ago
- Inject scripts into gzipped pages without decompression☆14Feb 4, 2026Updated last month
- SyscallLoader☆11Sep 13, 2021Updated 4 years ago
- 从入门到放弃的产物,学习过程中用python实现的一个单点c2基本功能☆11Mar 11, 2020Updated 5 years ago
- This contains a bundle with an executable to exploit ms17-010 remote or locally. It does not require Python.☆16Jan 10, 2019Updated 7 years ago
- neat way to detect memory read using nt layer function.☆14Aug 4, 2023Updated 2 years ago
- golang amsi bypass☆30Dec 4, 2021Updated 4 years ago
- PrintNightmare , Local Privilege Escalation of CVE-2021-1675 or CVE-2021-34527☆58Jul 2, 2021Updated 4 years ago
- Golang implementation of Reflective load PE from memory☆64Jan 10, 2022Updated 4 years ago
- impersonate trustedinstaller by fiddling with tokens☆17Aug 30, 2021Updated 4 years ago
- Rust Weaponization for Red Team Engagements.☆15Oct 9, 2021Updated 4 years ago
- check cs yara rules☆42Sep 7, 2021Updated 4 years ago
- Golang evasion tool, execute-assembly .Net file☆98Apr 25, 2022Updated 3 years ago
- mssql 终端连接工具|命令执行☆40Sep 29, 2019Updated 6 years ago
- A repository filled with ideas to break/detect direct syscall techniques☆26Apr 21, 2022Updated 3 years ago
- 优化了GetSystemEarlyBird的代码结构☆21Jun 24, 2020Updated 5 years ago
- Bypass cobaltstrike beacon config scan☆84May 24, 2021Updated 4 years ago
- Demo of process injection, using Nt, direct syscall, etc.☆27Sep 29, 2021Updated 4 years ago
- C# implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs☆150Oct 25, 2021Updated 4 years ago
- Windows & linux Echo to file command converter☆25Jun 18, 2021Updated 4 years ago
- Ms17-010-Scanner-exe 三秒扫完一个段☆21Jun 14, 2019Updated 6 years ago
- A work in progress of constructing a minimal http(s) beacon for Cobalt Strike.☆27Apr 28, 2022Updated 3 years ago
- 通过webshell实现的内网穿透工具☆49Nov 19, 2019Updated 6 years ago
- DPX - the Doge Packer for eXecutables☆30Dec 21, 2021Updated 4 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆32Nov 17, 2019Updated 6 years ago
- Golang implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs☆26Dec 3, 2021Updated 4 years ago
- Cobalt Strike beacon object file that allows you to query and make changes to the Windows Registry☆31Feb 11, 2021Updated 5 years ago
- 破解CS4.0☆163Mar 24, 2020Updated 5 years ago
- ShellCodeLoader via DInvoke☆60Jul 5, 2021Updated 4 years ago
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)☆31Dec 31, 2021Updated 4 years ago
- Reworked version of NCC Group's [SharpZeroLogon](https://github.com/nccgroup/nccfsas/tree/main/Tools/SharpZeroLogon) for .NET Framework 3…☆29Feb 13, 2021Updated 5 years ago
- An easy tool to disable and enable windows defender protections☆107Mar 20, 2022Updated 3 years ago
- 一个垃圾桶☆59Aug 14, 2022Updated 3 years ago
- Some demos to bypass EDRs or AVs by 78itsT3@m☆360Jul 6, 2022Updated 3 years ago
- Beacon compiled using clang☆72Jan 22, 2023Updated 3 years ago
- Project to check which Nt/Zw functions your local EDR is hooking☆200Mar 21, 2021Updated 4 years ago
- ☆29Sep 17, 2024Updated last year