LloydLabs / ntqueueapcthreadex-ntdll-gadget-injection

This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection.

Date Created 2023-02-19 (about a year ago)

Commits 24 (last one about a year ago)

Stargazers 226 (0 this week)

Watchers 4 (0 this week)

Forks 33

License mit

Ranking

RepositoryStats indexes 534,551 repositories, of these LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection is ranked #154,328 (71st percentile) for total stargazers, and #354,805 for total watchers. Github reports the primary language for this repository as C, for repositories using this language it is ranked #6,530/20,185.

Other Information

LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection has Github issues enabled, there is 1 open issue and 1 closed issue.

Homepage URL: https://blog.syscall.party

All Topics

shellcode process-injection shellcode-injection

Star History

Github stargazers over time

Watcher History

Github watchers over time, collection started in '23

Recent Commit History

24 commits on the default branch (dev) since jan '22

Yearly Commits

Commits to the default branch (dev) per year

Issue History

Languages

The only known language in this repository is C

Opengraph Image

LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection

updated: 2024-06-27 @ 12:07am, id: 603912073 / R_kgDOI_73iQ