LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection
This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection.
CMIT
Stargazers
- 0x413x4Edinburgh
- 0xFF1E071F
- 0xRobert
- 0xvmFFFF0800`00000000
- aleksanderboeNorway
- bassim00
- ChoiSG
- crtado
- DemiOneA
- dothanthitiendiettiende
- Dr3adZz
- emp4556
- federico22285
- FZKiritsugu
- g-goessel
- GerhardBotha97SecurityHQ
- gymR4T
- H1ghC0ntr4sT
- Hash512
- joshualoudenIndianapolis, IN
- kibercthulhu
- klezVirusBSI CSIR
- knightswdRed Team of JD
- kunpen
- mrexodiaPoland
- mukarramkhalid
- OffenseTeacher@OKIOKdata
- petarbojic
- reveng007Seed
- shogunlabShogun Lab
- starhawkingAustin, TX
- tanaka-geekTokyo
- tingtho
- winterknifeCoruscant
- wuyadie
- yangfan6888