Skip to content
View VirtualAlllocEx's full-sized avatar
🏠
Working from home
🏠
Working from home

Sponsoring

@BC-SECURITY
@SaadAhla
@S3cur3Th1sSh1t
@fin3ss3g0d

Highlights

  • Pro

Block or report VirtualAlllocEx

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Showing results

Evasive shellcode loader

C++ 318 57 Updated Oct 17, 2024

A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfvenom) by performing on-the-fly decryption of individual encry…

C++ 506 85 Updated Jun 12, 2024

Windows Local Privilege Escalation Cookbook

PowerShell 1,031 162 Updated Jan 20, 2025

Payload Generation Framework

VBA 89 11 Updated Mar 16, 2024

An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer

C++ 478 76 Updated Feb 13, 2024

A little tool to play with Windows security

C 19,710 3,780 Updated Jul 5, 2024

This repository contains sample programs written primarily in C and C++ for learning native code reverse engineering.

C 537 84 Updated Jan 13, 2024

This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to …

C 618 74 Updated Jul 6, 2024

DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable

Nim 57 12 Updated Dec 15, 2023

PoC Implementation of a fully dynamic call stack spoofer

C++ 735 97 Updated Jul 20, 2024

C++ self-Injecting dropper based on various EDR evasion techniques.

C 365 66 Updated Feb 11, 2024

Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms

C++ 115 18 Updated Dec 20, 2022

Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2

C++ 290 45 Updated Jul 15, 2023

Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)

Rust 234 39 Updated Jun 29, 2024

OSCP 2023 Preparation Guide | Courses, Tricks, Tutorials, Exercises, Machines

966 210 Updated Oct 27, 2024

Remote Shellcode Injector

C++ 207 37 Updated Aug 27, 2023

Security product hook detection

C++ 315 50 Updated Mar 30, 2021

HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.

C++ 646 100 Updated Jul 19, 2023

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

PowerShell 2,515 508 Updated Dec 8, 2022

SysWhispers on Steroids - AV/EDR evasion via direct system calls.

Python 1,361 175 Updated Jul 31, 2024

Intro to x86 Assembly Language.

Assembly 268 58 Updated Apr 29, 2020

The Havoc Framework

Go 7,141 1,000 Updated Jan 23, 2025

A DLL loader with advanced evasive features

C 690 91 Updated Feb 26, 2023

Powershell script to do domain auditing automation

PowerShell 381 103 Updated Nov 15, 2024

Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.

PowerShell 159 36 Updated Oct 4, 2024

Cheatsheet for the commands learned in Attack and Defense Active Directory Lab

190 69 Updated Dec 4, 2022

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

C++ 1,317 225 Updated Dec 26, 2024
Next
Showing results