Simple example for getting started with eBPF for Windows
☆52Feb 23, 2025Updated last year
Alternatives and similar repositories for TraceConnections
Users that are interested in TraceConnections are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Work with eBPF on Windows☆45Feb 26, 2025Updated last year
- A few examples of how to trap virtual memory access on Windows.☆41Dec 18, 2024Updated last year
- VisualStudio port of https://github.com/guervild/BOFs/tree/dev/SilentLsassDump☆23Jul 6, 2023Updated 3 years ago
- Simple utility to watch directory change notifications on a given path☆20Oct 6, 2017Updated 8 years ago
- Updated version of a long known self deletion technique to work with 24H2.☆62Jun 9, 2025Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- ☆40Updated this week
- A New Exploitation Technique for Visual Studio Projects☆13Nov 5, 2023Updated 2 years ago
- Vectored Exception Handling Squared☆30Dec 27, 2025Updated 6 months ago
- A tracker DLL which enables 'NTAPI->Syscall' tracking whenever it is loaded. It calls 'NtSetInformationProcess' API call with a callback …☆14Oct 21, 2024Updated last year
- Unused DLL hollowing PoC in Nim☆17Jan 31, 2022Updated 4 years ago
- A simple Linux in-memory .so loader☆36Mar 29, 2023Updated 3 years ago
- Windows Standalone SDK for Windows 10, Version 1607☆10Dec 16, 2017Updated 8 years ago
- A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system☆44Oct 30, 2024Updated last year
- ☆43Feb 18, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- API Set resolver for Windows☆143Sep 11, 2024Updated last year
- Examples of various container types for Python and Golang☆17Aug 29, 2025Updated 10 months ago
- This is a PoC using native windows API directx, to hide and decrypt shellcode via compute shader☆10May 3, 2025Updated last year
- ELF Beacon Object File (BOF) Template☆20Nov 18, 2024Updated last year
- MuddyWater C2 framework research☆11Jun 28, 2023Updated 3 years ago
- Trace events in real time sessions☆47Aug 25, 2023Updated 2 years ago
- A simple way to spoof return addresses using an exception handler☆43Aug 3, 2022Updated 3 years ago
- ☆15Mar 3, 2024Updated 2 years ago
- A set of programs for analyzing common vulnerabilities in COM☆262Sep 8, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- One WSL BOF to rule them all☆178Jan 14, 2026Updated 5 months ago
- Proof-of-concept modular implant platform leveraging v8☆55Mar 4, 2025Updated last year
- Enum and Remove Hook in Windows☆51Mar 28, 2026Updated 3 months ago
- CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).☆80Sep 18, 2022Updated 3 years ago
- A simple BOF that disables some logging with NtSetInformationProcess☆14Oct 13, 2023Updated 2 years ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆47Mar 3, 2026Updated 4 months ago
- rust clr heap encryption (https://github.com/lap1nou/CLR_Heap_encryption), but no heap encryption.☆17Jan 6, 2024Updated 2 years ago
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- Mentally ill EtwTi parser☆74Jan 11, 2026Updated 5 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Mimikatz embedded as classes☆27Oct 25, 2021Updated 4 years ago
- PE Viewer☆229Jun 11, 2026Updated 3 weeks ago
- Compileable POC of namazso's x64 return address spoofer.☆51Jun 10, 2020Updated 6 years ago
- A C++/Asm template for PIC/EXE/DLL malware☆24Aug 12, 2025Updated 10 months ago
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆176Feb 10, 2026Updated 4 months ago
- ☆18Mar 1, 2021Updated 5 years ago
- BOF and C++ implementation of the Windows Defender sandboxing technique described by Elastic Security Labs/Gabriel Landau.☆25Jul 5, 2023Updated 3 years ago