tyranid / WindowsRpcClientsLinks
This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System from 7 to Windows 10.
☆278Updated 5 years ago
Alternatives and similar repositories for WindowsRpcClients
Users that are interested in WindowsRpcClients are comparing it to the libraries listed below
Sorting:
- Tools for instrumenting Windows Defender's mpengine.dll☆302Updated 6 years ago
- FLARE Kernel Shellcode Loader☆178Updated 6 years ago
- ☆236Updated 7 years ago
- ☆68Updated 3 years ago
- Extract Windows Defender database from vdm files and unpack it☆448Updated last month
- ☆119Updated 4 years ago
- Windows RPC Python fuzzer☆163Updated 7 years ago
- This is a simple example and explanation of obfuscating API resolution via hashing☆235Updated 5 years ago
- Universal Unhooking☆322Updated 6 years ago
- POC for cve-2019-1458☆176Updated 3 years ago
- Dump of win32k POCs for bugs I've found☆378Updated 3 years ago
- Sample use cases of the .NET native code hooking technique☆213Updated 7 years ago
- Idapython script to carve binary for internal RPC structures☆235Updated last year
- An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security☆334Updated 8 years ago
- Example code for EDR bypassing☆150Updated 6 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆331Updated 5 years ago
- Demos of various (also non standard) persistence methods used by malware☆222Updated 2 years ago
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆158Updated 6 years ago
- Local privilege escalation PoC exploit for CVE-2019-16098☆193Updated 5 years ago
- A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.☆92Updated 10 years ago
- Just another Windows Process Injection☆400Updated 4 years ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆209Updated 5 years ago
- Expriments☆465Updated 10 months ago
- A C/C++ implementation of Microsoft's Antimalware Scan Interface☆182Updated 7 years ago
- Log ALPC activity☆84Updated last year
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆392Updated 5 years ago
- ☆218Updated 7 years ago
- Process Doppelgänging☆159Updated 7 years ago
- Process reimaging proof of concept code☆96Updated 6 years ago
- Windows System Programming Experiments☆220Updated 3 years ago