zimnyaa / LEOPARDSEALLinks
A simple Linux in-memory .so loader
☆30Updated 2 years ago
Alternatives and similar repositories for LEOPARDSEAL
Users that are interested in LEOPARDSEAL are comparing it to the libraries listed below
Sorting:
- Windows x64 Process Injection via Ghostwriting with Dynamic Configuration☆29Updated 3 years ago
- ☆48Updated 4 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 2 years ago
- A lexer and parser for Sleep☆20Updated last month
- ☆29Updated 4 years ago
- Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.☆28Updated 3 years ago
- Playing with PE's and Building Structures by Hand☆22Updated 3 years ago
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 3 years ago
- Simple and sane cryptographic wrapper library.☆27Updated 2 years ago
- ☆30Updated 2 months ago
- Unpacker for donut shellcode☆17Updated 5 years ago
- DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)☆27Updated 5 years ago
- ELF Beacon Object File (BOF) Template☆19Updated 7 months ago
- Loads .NET Assembly Via CLR Loader☆16Updated 6 years ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆21Updated 2 months ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆29Updated 3 years ago
- Example of using Sleep to create better named pipes.☆41Updated last year
- ☆36Updated last year
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- A simple BOF that disables some logging with NtSetInformationProcess☆13Updated last year
- NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…☆12Updated 2 years ago
- RunPE adapted for x64 and written in C, does not use RWX☆26Updated last year
- Self Delete DLL☆23Updated last year
- A repository filled with ideas to break/detect direct syscall techniques☆27Updated 3 years ago
- A simple PE loader.☆26Updated 2 years ago
- Small tool to play with IOCs caused by Imageload events☆42Updated 2 years ago
- Disable PPL via custom driver and dump lsass☆15Updated 4 years ago
- An In-memory Embedding of CPython☆28Updated 4 years ago
- Simple and sane compression wrapper library.☆18Updated 2 years ago
- AIDA64DRIVER Elevation of Privilege Vulnerability☆13Updated 8 months ago