cookpoo78

Pinned Repositories

sharem
SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also contains its own custom disassembler, with many innovative features, such as being able to show the deobfuscated disassembly of an encoded shellcode, or integrating emulation data to enhance the disassembly.
Language:Python331 12 752
awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs
0 0 00
Stardust
A modern 64-bit position independent implant template
Language:C1k 20 2157
LdrLockLiberator
For when DLLMain is the only way
Language:C341 11 361
awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs
212 6 031
PichichiH0ll0wer
Nim process hollowing loader
Language:Nim47 4 411
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
Language:C1.1k 13 9137
InfinityHook_latest
etw hook (syscall/infinity hook) compatible with the latest Windows version of PG
Language:C++180 6 361
metasploit-framework
Metasploit Framework
Language:Ruby33.7k 2.1k 6k13.9k
PPLSystem
Language:Rust165 4 420

cookpoo78/awesome-injection
Centralized resource for listing and organizing known injection techniques and POCs
0 0 00