timwhitez/Etwti-UnhookPOC external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

timwhitez/Etwti-UnhookPOC

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/timwhitez/Etwti-UnhookPOC)

Close

timwhitez / Etwti-UnhookPOCView on GitHubMore

• External links
• Readme badge

Etwti-UnhookPOC just for test

☆12Aug 23, 2022Updated 3 years ago

Alternatives and similar repositories for Etwti-UnhookPOC

Users that are interested in Etwti-UnhookPOC are comparing it to the libraries listed below

• brandonprry / crestron

  View on GitHub
  Tools for taking over Crestron Windows CE devices
  ☆36Jul 11, 2022Updated 3 years ago
• farfella / in-memory-cpython

  View on GitHub
  An In-memory Embedding of CPython
  ☆31May 24, 2021Updated 4 years ago
• delivr-to / MailCollector

  View on GitHub
  A .NET 4.8 application to retrieve delivr.to emails from Microsoft Outlook via COM
  ☆20Jul 19, 2025Updated 7 months ago
• EspressoCake / BetterPipename

  View on GitHub
  Example of using Sleep to create better named pipes.
  ☆41Jul 25, 2023Updated 2 years ago
• zimnyaa / inmembof.py

  View on GitHub
  A small example of loading BOFs in Python with pure reflection
  ☆19Jan 26, 2023Updated 3 years ago
• zacbre / AssemblyCompressor

  View on GitHub
  Use GZip to compress your .NET assemblies for loading with AssemblyResolve.
  ☆20Apr 11, 2014Updated 11 years ago
• sinmygit / RogueMMC

  View on GitHub
  Execute Shellcode And Other Goodies From MMC
  ☆14Jun 17, 2015Updated 10 years ago
• LethalSnake1337 / PE-Loader-exercise

  View on GitHub
  A simple PE loader.
  ☆27Dec 9, 2022Updated 3 years ago
• OffenseTeacher / Steganim

  View on GitHub
  ☆46Jun 21, 2023Updated 2 years ago
• tothi / stager_libpeconv

  View on GitHub
  A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading
  ☆84Nov 21, 2022Updated 3 years ago
• WithSecureLabs / dotnet-gargoyle

  View on GitHub
  A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique
  ☆52Dec 6, 2018Updated 7 years ago
• jsacco / PPL_Bypass

  View on GitHub
  ☆12Apr 7, 2022Updated 3 years ago
• d3vzer0 / cnc-relay

  View on GitHub
  Docker projects to retain beacon source IPs using C2 relaying infra
  ☆11Feb 25, 2019Updated 7 years ago
• threatexpress / edc

  View on GitHub
  Event Data Collector
  ☆39Jan 12, 2026Updated last month
• weaselsec / ClickOnce-AppDomain-Manager-Injection

  View on GitHub
  Click Once + App Domain
  ☆67Feb 23, 2026Updated last week
• xenoscr / offsecops-shared-library

  View on GitHub
  A collection of scripts used to support an OffSecOps pipeline.
  ☆15Jan 31, 2021Updated 5 years ago
• EspressoCake / DLL_Version_Enumeration_BOF

  View on GitHub
  A BOF for enumerating version information for DLLs associated for a Beacon process.
  ☆16Nov 23, 2021Updated 4 years ago
• oherrala / xipology

  View on GitHub
  ☆18Jun 14, 2023Updated 2 years ago
• C-Sto / encembed

  View on GitHub
  Encrypt embedded go files using age.
  ☆49Oct 21, 2021Updated 4 years ago
• janoglezcampos / c_syscalls

  View on GitHub
  Single stub direct and indirect syscalling with runtime SSN resolving for windows.
  ☆140Sep 12, 2022Updated 3 years ago
• CultCornholio / solenya

  View on GitHub
  Microsoft365 Device Code Phishing Framework
  ☆39Sep 4, 2021Updated 4 years ago
• MaxXor / obfuscator-llvm

  View on GitHub
  Obfuscator as LLVM extension
  ☆109Apr 15, 2022Updated 3 years ago
• Meckazin / HidingFromETW

  View on GitHub
  PoC for detecting and evading ETW detection of .Net Assembly.Load
  ☆21Aug 26, 2020Updated 5 years ago
• timwhitez / Doge-RL

  View on GitHub
  Reflective DLL injection Execution
  ☆20Sep 9, 2022Updated 3 years ago
• ahhh / GoRedDeath

  View on GitHub
  Experimenting with destructive file attacks in Go
  ☆19May 20, 2019Updated 6 years ago
• timwhitez / JmpUnhook

  View on GitHub
  Ntdll Unhooking POC
  ☆19Aug 12, 2022Updated 3 years ago
• HuskyHacks / RustyTokenManipulation

  View on GitHub
  just manipulatin these here tokens yes sir nothing weird
  ☆22Apr 18, 2022Updated 3 years ago
• VirtueSecurity / benigncertain-monitor

  View on GitHub
  ☆20Apr 21, 2020Updated 5 years ago
• 200ug / airborne

  View on GitHub
  Shellcode reflective DLL injection in Rust
  ☆27Dec 26, 2025Updated 2 months ago
• zimnyaa / fiber-stager

  View on GitHub
  A simple Nim stager (w/ fiber execution)
  ☆20Jan 31, 2022Updated 4 years ago
• belane / PS-BinDiff

  View on GitHub
  Powershell script to diff and patch binaries
  ☆21Sep 1, 2022Updated 3 years ago
• curtbraz / PhishingFromMS365API

  View on GitHub
  A Couple of Python Scripts Leveraging MS365's GraphAPI to Send Custom Calendar Events / Emails from Cheap O365 Accounts
  ☆18Apr 19, 2024Updated last year
• jborean93 / PSDetour

  View on GitHub
  Windows Detour Hooking in PowerShell
  ☆83Dec 23, 2025Updated 2 months ago
• zimnyaa / xyrella

  View on GitHub
  PoC XLL builder in Python/Nim
  ☆49Nov 21, 2022Updated 3 years ago
• aaaddress1 / xlsGen

  View on GitHub
  (PoC) Tiny Excel BIFF8 Generator, to Embedded 4.0 Macros in xls files without Excel.
  ☆44Aug 1, 2021Updated 4 years ago
• ChoiSG / SharpPSLoader

  View on GitHub
  Simple .NET loader for loading and executing Powershell payloads
  ☆17Nov 5, 2021Updated 4 years ago
• am0nsec / MCGC

  View on GitHub
  Minimalist Custom .NET Core Garbage Collector
  ☆23Jun 15, 2020Updated 5 years ago
• rasta-mouse / SQL-BOF

  View on GitHub
  Library of BOFs to interact with SQL servers
  ☆23Apr 9, 2025Updated 10 months ago
• m4ul3r / writing_nimless

  View on GitHub
  Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.
  ☆85Jul 11, 2025Updated 7 months ago