vmcall / tasklist-brutusLinks
Undocumented way of fetching list of processes by bruteforcing NtQuerySystemInformation
☆16Updated 7 years ago
Alternatives and similar repositories for tasklist-brutus
Users that are interested in tasklist-brutus are comparing it to the libraries listed below
Sorting:
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆32Updated 5 years ago
- Remote memory library in C++17.☆31Updated 7 years ago
- x64 injector using LoadLibrary made in assembler (MASM)☆26Updated 7 years ago
- Скрытие строки от отладчиков и декомпиляторов☆51Updated 5 years ago
- New handle stealing technique for windows apps☆13Updated 7 years ago
- Polymorphic Stub Creator☆34Updated 8 years ago
- Simple header only library to change return address on current stack frame.☆24Updated 8 years ago
- Analysing and defeating PatchGuard universally☆35Updated 4 years ago
- win32/x64 obfuscate framework☆32Updated 6 years ago
- MazzCrypt - You won't ever get caught. A [was-private] polymorphic source code parser to randomize executables. Inspired by PolyLoader by…☆13Updated 8 years ago
- Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected☆36Updated 6 years ago
- Driver Loader/BE Bypass/Win Malware(lol)☆34Updated 6 years ago
- ☆14Updated 7 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago
- Injector with kernel power☆16Updated 4 years ago
- ☆26Updated 7 years ago
- PE(compressed dll) memory loader using nt api☆44Updated 8 years ago
- A simple kernel mode driver that hooks some values at the KUSER_SHARED_DATA structure.☆26Updated 5 years ago
- Library for using direct system calls☆35Updated 6 months ago
- using gpuz to load driver☆35Updated 6 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago
- Dll injector POC for new handle stealing technique☆20Updated 7 years ago
- R3劫持所有异常☆15Updated 4 years ago
- ☆14Updated 12 years ago
- Yet Another Sig Scanner☆31Updated 7 years ago
- ☆24Updated 6 years ago
- LoadLibrary, GetModuleHandle and GetProcAddress calls for remote processes☆22Updated 10 years ago
- Some crazy PE executables protection kernel driver☆19Updated 5 years ago
- Class implementation of PowerLoader injection technique☆32Updated 8 years ago
- Example of hijacking system calls via function pointer tables☆31Updated 4 years ago