Pinned Repositories
sharem
SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also contains its own custom disassembler, with many innovative features, such as being able to show the deobfuscated disassembly of an encoded shellcode, or integrating emulation data to enhance the disassembly.
awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs
Stardust
A modern 64-bit position independent implant template
LdrLockLiberator
For when DLLMain is the only way
awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs
PichichiH0ll0wer
Nim process hollowing loader
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
InfinityHook_latest
etw hook (syscall/infinity hook) compatible with the latest Windows version of PG
metasploit-framework
Metasploit Framework
PPLSystem
cookpoo78's Repositories
cookpoo78/awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs