xforcered / Detect-Hooks
Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
☆98Updated 3 years ago
Alternatives and similar repositories for Detect-Hooks:
Users that are interested in Detect-Hooks are comparing it to the libraries listed below
- Collection of Beacon Object Files (BOFs) for shells and lols☆114Updated 3 years ago
- .NET project for installing Persistence☆64Updated 3 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆78Updated 2 years ago
- Section Mapping Process Injection (secinject): Cobalt Strike BOF☆91Updated 3 years ago
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆85Updated 2 years ago
- ☆56Updated 4 years ago
- ☆142Updated 2 years ago
- A simple BOF that frees UDRLs☆116Updated 2 years ago
- ☆93Updated 2 years ago
- Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs☆122Updated 2 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged