Dll injection through code page id modification in registry. Based on jonas lykk research
☆17Jun 18, 2022Updated 3 years ago
Alternatives and similar repositories for NlsCodeInjectionThroughRegistry
Users that are interested in NlsCodeInjectionThroughRegistry are comparing it to the libraries listed below
Sorting:
- ☆14Dec 26, 2024Updated last year
- ☆17May 7, 2025Updated 9 months ago
- Submission, compilation and execution of C# code snippets, using an unmanaged CLR Host☆53Jan 29, 2015Updated 11 years ago
- BOF to decrypt Signal Desktop chat logs☆71Feb 20, 2025Updated last year
- An example of an external LLVM plugin module transform pass for the latest versions.☆14Oct 21, 2025Updated 4 months ago
- Repository to gather the BOF files I will be developing☆11Oct 1, 2024Updated last year
- Proof-of-concept modular implant platform leveraging v8☆54Mar 4, 2025Updated 11 months ago
- Shellcode Loader Utilizing ETW Events☆67Feb 26, 2025Updated last year
- Proxy function calls through the thread pool with ease☆31Feb 27, 2025Updated last year
- A COFF Loader written in Rust☆136Dec 1, 2025Updated 2 months ago
- Mentally ill EtwTi parser☆68Jan 11, 2026Updated last month
- Position-independent Reflective Loader for macOS☆112Feb 19, 2026Updated last week
- A set of programs for analyzing common vulnerabilities in COM☆246Sep 8, 2024Updated last year
- Determine if the WebClient Service (WebDAV) is running on a remote system☆21Nov 28, 2025Updated 3 months ago
- Slides for COM Hijacking AV/EDR Talk on 38c3☆75Jan 3, 2025Updated last year
- ☆31Feb 28, 2025Updated 11 months ago
- Windows rootkit designed to work with BYOVD exploits☆216Jan 18, 2025Updated last year
- An example reference design for a proposed BOF PE☆197Jan 23, 2026Updated last month
- Kernel module that allows hiding files in any filesystem☆23Dec 20, 2024Updated last year
- Win32 keylogger that supports all (non-ime using) languages correctly☆53Dec 21, 2023Updated 2 years ago
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- Unpacker for donut shellcode☆21Jun 20, 2020Updated 5 years ago
- ForsHops☆152Mar 25, 2025Updated 11 months ago
- Collection of red team techniques.☆66Apr 25, 2025Updated 10 months ago
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆66Dec 29, 2023Updated 2 years ago
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆117Jan 20, 2025Updated last year
- SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.☆309Feb 16, 2026Updated last week
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆61Oct 19, 2024Updated last year
- Library of BOFs to interact with SQL servers☆23Apr 9, 2025Updated 10 months ago
- ☆12Feb 4, 2025Updated last year
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆104Feb 25, 2025Updated last year
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆73Apr 13, 2025Updated 10 months ago
- open source port/reimplementation of the Cobalt Strike BOF Loader as is☆68Feb 3, 2026Updated 3 weeks ago
- remote process injections using pool party techniques☆70Jun 29, 2025Updated 7 months ago
- A simple header only SHA1 implementation in C (no dependencies)☆38Feb 10, 2025Updated last year
- A set of LLVM and GCC based plugins that perform code obfuscation.☆139Oct 20, 2025Updated 4 months ago
- Bypassing Amsi using LdrLoadDll☆47Jan 8, 2025Updated last year
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆123Jan 17, 2026Updated last month
- A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader