tyranid / WindowsRpcClientsLinks
This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System from 7 to Windows 10.
☆278Updated 5 years ago
Alternatives and similar repositories for WindowsRpcClients
Users that are interested in WindowsRpcClients are comparing it to the libraries listed below
Sorting:
- FLARE Kernel Shellcode Loader☆178Updated 6 years ago
- ☆235Updated 7 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆298Updated 6 years ago
- ☆216Updated 7 years ago
- ☆68Updated 3 years ago
- This is a simple example and explanation of obfuscating API resolution via hashing☆235Updated 5 years ago
- ☆110Updated 4 years ago
- Extract Windows Defender database from vdm files and unpack it☆440Updated 5 years ago
- Universal Unhooking☆321Updated 6 years ago
- An improvement of the original reflective DLL injection technique by Stephen Fewer of Harmony Security☆324Updated 7 years ago
- A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.☆91Updated 10 years ago
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆158Updated 5 years ago
- Canadian Furious Beaver is a ProcMon-style tool designed only for capturing IRPs sent to any Windows driver.☆321Updated last year
- AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.☆387Updated 6 years ago
- Windows RPC Python fuzzer☆162Updated 7 years ago
- Managed assembly shellcode generation☆271Updated 4 years ago
- Dump of win32k POCs for bugs I've found☆375Updated 3 years ago
- Position Independent Windows Shellcode Written in C☆291Updated 6 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆389Updated 4 years ago
- Sample use cases of the .NET native code hooking technique☆212Updated 7 years ago
- PrintDemon is a PoC for a series of issues in the Windows Print Spooler service, as well as potetial misuses of the functionality.☆201Updated 5 years ago
- POC for cve-2019-1458☆174Updated 3 years ago
- Just another Windows Process Injection☆399Updated 4 years ago
- Use CLR to inject all the .NET apps☆184Updated 4 years ago
- Log ALPC activity☆84Updated last year
- Driver Initial Reconnaissance Tool☆123Updated 5 years ago
- Example code for EDR bypassing☆150Updated 6 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆332Updated 5 years ago
- An command-line RPC method enumerator, born out of RPCView's awesomeness☆104Updated 5 years ago
- Idapython script to carve binary for internal RPC structures☆233Updated last year