tyranid / WindowsRpcClientsLinks
This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System from 7 to Windows 10.
☆280Updated 5 years ago
Alternatives and similar repositories for WindowsRpcClients
Users that are interested in WindowsRpcClients are comparing it to the libraries listed below
Sorting:
- ☆68Updated 3 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆304Updated 6 years ago
- FLARE Kernel Shellcode Loader☆179Updated 6 years ago
- Extract Windows Defender database from vdm files and unpack it☆462Updated last month
- ☆121Updated 5 years ago
- ☆236Updated 8 years ago
- This is a simple example and explanation of obfuscating API resolution via hashing☆237Updated 5 years ago
- POC for cve-2019-1458☆177Updated 3 years ago
- Universal Unhooking☆325Updated 7 years ago
- Dump of win32k POCs for bugs I've found☆380Updated 3 years ago
- Windows RPC Python fuzzer☆163Updated 7 years ago
- Local privilege escalation PoC exploit for CVE-2019-16098☆197Updated 6 years ago
- Just another Windows Process Injection☆401Updated 5 years ago
- Idapython script to carve binary for internal RPC structures☆240Updated last year
- A Bind Shell Using the Fax Service and a DLL Hijack☆331Updated 5 years ago
- Sample use cases of the .NET native code hooking technique☆213Updated 7 years ago
- Example code for EDR bypassing☆150Updated 6 years ago
- A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.☆92Updated 10 years ago
- Demos of various (also non standard) persistence methods used by malware☆223Updated 2 years ago
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆158Updated 6 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆397Updated 5 years ago
- ☆219Updated 7 years ago
- An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security☆337Updated 8 years ago
- Find patterns of vulnerabilities on Windows in order to find 0-day and write exploits of 1-days. We use Microsoft security updates in ord…☆189Updated 4 years ago
- Log ALPC activity☆84Updated 2 years ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆211Updated 5 years ago
- A meterpreter extension for applying hooks to avoid windows defender memory scans☆249Updated 5 years ago
- Process Doppelgänging☆161Updated 7 years ago
- CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.☆332Updated last year
- PoC for proxying COM objects when hijacking☆211Updated 6 years ago