Simple one file header for hijacking windows version.dll for desired executable to do 3rd party modifying without dll injection.
#include "VersionHijack.hpp"
int __stdcall DllMain(HMODULE m_hModule, DWORD m_dReason, void* m_pReserved)
{
if (m_dReason == DLL_PROCESS_ATTACH)
{
VersionHijack::Initialize();
// Your code...
}
return 1;
}
BOF - Lateral movement technique by abusing Windows Perception Simulation Service to achieve DLL hijacking ServiceMove is a POC code for an interestin
Windows Process Injection Here are some popular methods used for process injection on the windows operating system. Conhost ExtraBytes PROPagate Servi
Beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.exe" by using DCOM object.
UAC bypass - DLL hijacking Description This is a PoC for bypassing UAC using DLL hijacking and abusing the "Trusted Directories" verification. Summary
COM-Hijacking An example of COM hijacking using a proxy DLL. Demo using getmac/wbemprox.dll In this demo, we use the fact that the getmac.exe command
startup_namer A new Flutter project. Getting Started This project is a starting point for a Flutter application. A few resources to get you started if
Spotify AdBlock Windows Spotify Ad Block, in C ! Build Open an issue with information related if any error occurs. mingw32-make all Tested gcc: # gcc
syringe - A DLL & Code Injection C++ library for Windows. syringe is a DLL & Code Injection C++ library for Windows that contains different techniques
dll-encryptor People who make pay hacks typically have down syndrome and are incapable of using their brains in any fashion, and yet these bath salt s
WindowsPermsPoC A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows You can build i
Libguestfs is tools and a library for accessing and modifying guest disk images
Process Ghosting This is my implementation of the technique presented by Gabriel Landau: https://www.elastic.co/blog/process-ghosting-a-new-executable
Cobalt Strike "Where Am I?" Beacon Object File Cobalt Strike Beacon Object File (BOF) that uses handwritten shellcode to return the process Environmen
The C source code was RESTORED by disassembling the original executable file OPTIM.COM from the Hi-Tech v3.09 compiler. This file is compiled by Hi-Te
ep_dwm Implements a Windows service that removes the rounded corners for windows in Windows 11. Tested on Windows 11 build 22000.434. Pre-compiled bin
VC-LTL - An elegant way to compile lighter binaries. 简体中文 I would like to turn into a stone bridge, go through 500 years of wind, 500 years of Sun, ra
?? WinWMI A simple one header solution to interacting with Windows WMI in C++ Usage Just #include "winwmi.hpp" in your code! Initialize To initialize
?? Koaloader ?? A collection of DLLs that use search order hijacking to automatically inject specified DLLs. ?? Usage Simply place one of the proxy dl
NanoShell NanoShell 3rd Edition is a preemptively multi-tasked 32-bit operating system with a windowed GUI. Be advised that this is UNFINISHED/beta-wa
174 Jul 10, 2022
1.3k Jul 31, 2022
191 Jul 13, 2022
13 Jun 4, 2022
2 Feb 3, 2022
1 Nov 2, 2021
5 Jul 28, 2022
2 Nov 24, 2021
55 Jul 21, 2022
497 Jul 21, 2022
462 Jul 25, 2022
86 Jul 27, 2022
9 May 23, 2022
16 Jun 18, 2022
204 Aug 4, 2022
4 Jan 24, 2022
35 Jul 25, 2022
68 Jul 30, 2022