Alternatives and similar repositories for WindowsRpcClients

Users that are interested in WindowsRpcClients are comparing it to the libraries listed below

• tyranid / windows-logical-eop-workshop
  ☆235Updated 7 years ago
• 0xAlexei / WindowsDefenderTools
  Tools for instrumenting Windows Defender's mpengine.dll
  ☆300Updated 6 years ago
• LloydLabs / Windows-API-Hashing
  This is a simple example and explanation of obfuscating API resolution via hashing
  ☆235Updated 5 years ago
• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆178Updated 6 years ago
• jthuraisamy / ioctlpus
  ☆116Updated 4 years ago
• tandasat / DotNetHooking
  Sample use cases of the .NET native code hooking technique
  ☆213Updated 7 years ago
• Cyb3rWard0g / WinRpcFunctions
  ☆68Updated 3 years ago
• sogeti-esec-lab / RPCForge
  Windows RPC Python fuzzer
  ☆162Updated 7 years ago
• endgameinc / ClrGuard
  ☆217Updated 7 years ago
• xpn / RpcEnum
  An command-line RPC method enumerator, born out of RPCView's awesomeness
  ☆105Updated 5 years ago
• hfiref0x / WDExtract
  Extract Windows Defender database from vdm files and unpack it
  ☆443Updated last week
• zodiacon / ALPCLogger
  Log ALPC activity
  ☆84Updated last year
• commial / experiments
  Expriments
  ☆463Updated 8 months ago
• CylanceVulnResearch / ReflectiveDLLRefresher
  Universal Unhooking
  ☆321Updated 6 years ago
• ionescu007 / faxhell
  A Bind Shell Using the Fax Service and a DLL Hijack
  ☆331Updated 5 years ago
• tyranid / ExploitDotNetDCOM
  A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.
  ☆91Updated 10 years ago
• Signal-Labs / NtdllUnpatcher
  Example code for EDR bypassing
  ☆150Updated 6 years ago
• dismantl / ImprovedReflectiveDLLInjection
  An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security
  ☆330Updated 7 years ago
• gdabah / win32k-bugs
  Dump of win32k POCs for bugs I've found
  ☆375Updated 3 years ago
• 3gstudent / Inject-dll-by-Process-Doppelganging
  Process Doppelgänging
  ☆158Updated 7 years ago
• Accenture / CLRvoyance
  Managed assembly shellcode generation
  ☆271Updated 4 years ago
• hlldz / APC-PPID
  Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.
  ☆158Updated 6 years ago
• palantir / exploitguard
  Documentation and supporting script sample for Windows Exploit Guard
  ☆156Updated 3 years ago
• jdu2600 / Windows10EtwEvents
  Events from all manifest-based and mof-based ETW providers across Windows 10 versions
  ☆299Updated last year
• hasherezade / persistence_demos
  Demos of various (also non standard) persistence methods used by malware
  ☆222Updated 2 years ago
• synacktiv / Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion
  PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
  ☆208Updated 4 years ago
• leoloobeek / COMProxy
  PoC for proxying COM objects when hijacking
  ☆208Updated 5 years ago
• trailofbits / RpcInvestigator
  Exploring RPC interfaces on Windows
  ☆322Updated last year
• koutto / ioctlbf
  Windows Kernel Drivers fuzzer
  ☆349Updated 8 years ago
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆139Updated 2 years ago