/UnhookingPatch

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

Primary LanguageC++MIT LicenseMIT

UnhookingPatch

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

image

How do i convert binary to MAC ?

Requirements:

  1. macaddress
pip install macaddress
./bin2mac.py calc.bin