Pinned Repositories
awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs
Stardust
A modern 64-bit position independent implant template
PipeViewer
A tool that shows detailed information about named pipes in Windows
LdrLockLiberator
For when DLLMain is the only way
awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
InfinityHook_latest
etw hook (syscall/infinity hook) compatible with the latest Windows version of PG
metasploit-framework
Metasploit Framework
rz-ghidra
Deep ghidra decompiler and sleigh disassembler integration for rizin
Voidmaw
A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders implemented by C2 beacons) or other problematic executables that will be flagged by the antimalware programs(such as mimikatz).
cookpoo78's Repositories
cookpoo78/awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs