Inline syscalls made easy for windows on clang
-
Updated
Jun 7, 2024 - C++
Inline syscalls made easy for windows on clang
Inline syscalls made for MSVC supporting x64 and WOW64
convenient use of syscalls with a single line and a comfort wrapper, unfriendly for reverse engineer
Implementation of Indirect Syscall technique to pop a calc.exe
This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
"D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system calls, randomized procedures, and prototype name obfuscation. Its primary purpose is to bypass both static and dynamic analysis techniques commonly employed by security measures.
This repository contains a tool which traces syscalls in a fast way using eBPF linux kernel feature
Abusing RtlAdjustPrivilege and NtSetInformationProcess to cause a BSOD from usermode
Single header library to simplify the usage of direct syscalls. x64/x86
A shellcode loader powered by a web panel.
Low level libseccomp bindings for Node.js
This is an extension of Nachos to support multiprogramming using system calls such as Exec, Exit, Read and Write to have processes request services from the kernel. Then it is further extended by a Virtual Memory Manager supported by Demand Paging and Page Replacement procedures.
Enumerate which window API calls are hooked by an EDR using inline patching technique
This is a modification of SPIM. Original source code can be found here. Original spim is designed to execute only one process but by adding syscalls like execv, fork, wait and some other helper syscalls I was able to modify it to a multi-process OS with multitasking. There are also interrupts periodically to call the interrupt function which is …
Operating Systems (C++ - ASSEMBLY Language) Assembly programs, Syscalls, Program Scheduling, Process Table, Multiple Programming, Interrupt Handling, Micro Kernel
Add a description, image, and links to the syscalls topic page so that developers can more easily learn about it.
To associate your repository with the syscalls topic, visit your repo's landing page and select "manage topics."