Popular repositories Loading

1. Loading Remote AES Encrypted PE in memory , Decrypted it and run it

   C++ 1k 199

2. This repo contains : simple shellcode Loader , Encoders (base64 - custom - UUID - IPv4 - MAC), Encryptors (AES), Fileless Loader (Winhttp, socket)

   C++ 443 113

3. A keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing it to record keystrokes in certain contexts (like in mstsc.ex…

   C++ 398 66

4. Shellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscall instruction address resolving at run time

   C++ 322 68

5. Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

   C++ 313 53

6. Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle to ntdll , and trigger exported APIs from the export table

   C++ 306 47