Example of building an application verifer DLL
☆51Jun 1, 2024Updated last year
Alternatives and similar repositories for VerifierDLL
Users that are interested in VerifierDLL are comparing it to the libraries listed below
Sorting:
- ☆42Feb 18, 2025Updated last year
- View Windows System in action☆45Aug 3, 2025Updated 6 months ago
- OpenHashAPI provides a secure method of communicating hashes and enables lightweight workflows for security practitioners and enthusiasts…☆13Oct 27, 2024Updated last year
- Remote Thread Detection with a Kernel Driver☆34Jan 14, 2025Updated last year
- ☆31Jul 26, 2024Updated last year
- ☆44Oct 16, 2023Updated 2 years ago
- Vectored Exception Handling Squared☆29Dec 27, 2025Updated 2 months ago
- In-memory hiding technique☆63Jan 5, 2025Updated last year
- Reverse SOCKS5 Proxy Written in Rust☆28Mar 9, 2021Updated 4 years ago
- BasicLDR: A Reflective DLL Loader☆14Jun 11, 2024Updated last year
- Me fockin' pe protector☆45Nov 19, 2022Updated 3 years ago
- anti-ransomware file-system filter☆69Sep 3, 2024Updated last year
- A bunch of shenanigans using functions, VEH and more☆37Jun 8, 2025Updated 8 months ago
- From C, Rust or Zig to binary shellcode compiler based on Mingw gcc. It allows using Win32 APIs and standard libraries without any change…☆53Sep 22, 2025Updated 5 months ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- Repository of Microsoft Driver Block Lists based off of OS-builds☆43Apr 14, 2024Updated last year
- Loads a program into a memfd and runs it.☆11May 22, 2022Updated 3 years ago
- Repository of different kernel drivers written while studying Windows NT Driver development☆12Apr 14, 2024Updated last year
- Process Injection using Thread Name☆299Apr 18, 2025Updated 10 months ago
- Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…☆272Oct 31, 2024Updated last year
- A simple C++ Windows tool to get information about processes exposing named pipes.☆40Mar 6, 2025Updated 11 months ago
- TypeLib persistence technique☆140Oct 22, 2024Updated last year
- Dynamically resolve API function addresses at runtime in a secure manner.☆72Nov 11, 2025Updated 3 months ago
- Shellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscal…☆322Aug 2, 2023Updated 2 years ago
- Code Execution & Persistence in NETWORK SERVICE FAX Service☆35Feb 2, 2026Updated last month
- Admin to Kernel code execution using the KSecDD driver☆265Apr 19, 2024Updated last year
- ☆100Sep 1, 2024Updated last year
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆32Mar 8, 2025Updated 11 months ago
- Extension functionality for the NightHawk operator client☆26Oct 31, 2023Updated 2 years ago
- Extension functionality for the NightHawk operator client☆26Nov 3, 2023Updated 2 years ago
- ☆113Oct 10, 2022Updated 3 years ago
- RunPE adapted for x64 and written in C, does not use RWX☆28May 18, 2024Updated last year
- DFSCoerce exe revisited version with custom authentication☆42Jan 13, 2024Updated 2 years ago
- Find world writable directories that contain a .exe or .dll file☆13Aug 31, 2021Updated 4 years ago
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆46Jul 29, 2024Updated last year
- ☆181Apr 24, 2025Updated 10 months ago
- A simple rpc2socks alternative in pure Go.☆31Jul 8, 2024Updated last year
- ☆38Apr 15, 2025Updated 10 months ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago