yoavshah / ImportlessApi
☆18Updated last year
Alternatives and similar repositories for ImportlessApi:
Users that are interested in ImportlessApi are comparing it to the libraries listed below
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- A simple Linux in-memory .so loader☆29Updated last year
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆61Updated 2 years ago
- An example of COM hijacking using a proxy DLL.☆28Updated 3 years ago
- Small tool to play with IOCs caused by Imageload events☆42Updated last year
- ☆18Updated 2 months ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- A small example of loading BOFs in Python with pure reflection☆19Updated 2 years ago
- Hooked create process injection for meterpreter☆23Updated 3 years ago
- A repository filled with ideas to break/detect direct syscall techniques☆27Updated 2 years ago
- RunPE adapted for x64 and written in C, does not use RWX☆24Updated 10 months ago
- A pure C version of SymProcAddress☆25Updated last year
- Sleep Obfuscation☆43Updated 2 years ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…☆18Updated last month
- ☆25Updated last month
- ☆24Updated last month
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated last year
- DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)☆27Updated 5 years ago
- ☆12Updated last year
- A lexer and parser for Sleep☆16Updated 2 months ago
- ☆48Updated 3 years ago
- ☆48Updated last year
- A collection of random small Aggressor snippets that don't warrant their own repo☆23Updated 2 years ago
- really ?☆12Updated last year
- Self Delete DLL☆23Updated last year
- A PE morphing tool that allows you to mimic one executable file to another.☆11Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆70Updated last year
- A simple Nim stager (w/ fiber execution)☆16Updated 3 years ago
- CSharp4Pentesters☆12Updated 3 years ago