3 results found Sort:
Inline syscalls made for MSVC supporting x64 and WOW64
Created
2023-04-03
13 commits to master branch, last one about a year ago
A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (using pe2shc by @hasherezade). Payload encryption via SystemFuc...
Created
2023-01-30
20 commits to main branch, last one about a year ago
Bypass the Event Trace Windows(ETW) and unhook ntdll.
Created
2023-09-25
6 commits to main branch, last one about a year ago