yo-yo-yo-jbo / injection_and_hooking_introLinks
☆38Updated 2 years ago
Alternatives and similar repositories for injection_and_hooking_intro
Users that are interested in injection_and_hooking_intro are comparing it to the libraries listed below
Sorting:
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆84Updated 3 weeks ago
- IAT Unhooking proof-of-concept☆30Updated last year
- A collection of PoCs for different injection techniques on Windows!☆44Updated last year
- A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.☆39Updated 2 years ago
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆64Updated 7 months ago
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…☆85Updated 2 years ago
- Duplicate not owned Token from Running Process☆72Updated 2 years ago
- A repository with my code snippets for research/education purposes.☆50Updated 2 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆57Updated 2 years ago
- Detect userland hooks placed by AV/EDR☆28Updated last year
- WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.☆55Updated 4 years ago
- ☆48Updated 2 years ago
- A PoC for achieving persistence via push notifications on Windows☆47Updated 2 years ago
- Situational Awareness script to identify how and where to run implants☆55Updated 8 months ago
- ☆44Updated last year
- A small red team course☆40Updated 2 years ago
- Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C☆39Updated 5 years ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆64Updated last year
- Bypass AMSI By Dividing files into multiple smaller files☆46Updated 2 years ago
- ☆57Updated 8 months ago
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- ☆48Updated last year
- Source code and examples for PassiveAggression☆63Updated last year
- ☆59Updated last year
- POC for DLL Proxying / Hijacking☆61Updated 2 months ago
- Windows internals and exploitation tricks☆102Updated last month
- ☆28Updated 2 years ago
- ☆52Updated last year
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 3 years ago
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆47Updated 2 years ago