x0reaxeax / PageSplit
Splitting and executing shellcode across multiple pages
☆100Updated last year
Alternatives and similar repositories for PageSplit:
Users that are interested in PageSplit are comparing it to the libraries listed below
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 7 months ago
- Malware?☆69Updated 5 months ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆88Updated 9 months ago
- ☆98Updated last year
- ☆121Updated last year
- Patch AMSI and ETW in remote process via direct syscall☆81Updated 2 years ago
- ☆133Updated last year
- Find DLLs with RWX section☆78Updated last year
- I have documented all of the AMSI patches that I learned till now☆74Updated last year
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆138Updated 2 years ago
- Section-based payload obfuscation technique for x64☆59Updated 7 months ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆80Updated 5 months ago
- Tool for playing with Windows Access Token manipulation.☆54Updated 2 years ago
- Rusty Hell's Gate / Halo's Gate / Tartarus' Gate / FreshyCalls / Syswhispers2 Library☆27Updated 2 years ago
- stack spoofing☆80Updated 4 months ago
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆42Updated last year
- ☆125Updated 6 months ago
- ☆85Updated 7 months ago
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆60Updated 2 months ago
- Threadless shellcode injection tool☆63Updated 7 months ago
- API Hammering with C++20☆45Updated 2 years ago
- shell code example☆33Updated last week
- Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar☆129Updated 7 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆56Updated 4 months ago
- Do some DLL SideLoading magic☆79Updated last year
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆67Updated last year