x0reaxeax / PageSplit
Splitting and executing shellcode across multiple pages
☆99Updated last year
Alternatives and similar repositories for PageSplit:
Users that are interested in PageSplit are comparing it to the libraries listed below
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆73Updated 7 months ago
- ☆120Updated last year
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆87Updated 8 months ago
- ☆98Updated last year
- Find DLLs with RWX section☆76Updated last year
- Patch AMSI and ETW in remote process via direct syscall☆81Updated 2 years ago
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆96Updated last year
- I have documented all of the AMSI patches that I learned till now☆74Updated last year
- ☆95Updated last month
- Construct the payload at runtime using an array of offsets☆62Updated 8 months ago
- ☆134Updated last year
- Do some DLL SideLoading magic☆79Updated last year
- Malware?☆69Updated 5 months ago
- Create Anti-Copy DRM Malware☆54Updated 6 months ago
- A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user☆37Updated 6 months ago
- ☆123Updated 6 months ago
- stack spoofing☆79Updated 3 months ago
- Template-based generation of shellcode loaders☆76Updated 10 months ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆80Updated 4 months ago
- API Hammering with C++20☆45Updated 2 years ago
- Simple BOF to read the protection level of a process☆114Updated last year
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆67Updated last year
- ☆148Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆70Updated last year
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆137Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆101Updated 2 years ago