Git/mgeeky-Penetration-Testing-Tools
1
0
Fork 0
mirror of https://github.com/mgeeky/Penetration-Testing-Tools.git synced 2025-11-04 04:55:26 +01:00
Code Issues Packages Projects Releases Wiki Activity

Added ThreadStackSpoofer

Browse Source
This commit is contained in:
Mariusz B. / mgeeky
2021-09-27 00:53:28 +02:00
parent 82258ffdf0
commit e1bf705615
3 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
windows/README.md
View File

@@ -102,6 +102,8 @@ PS> python3 rdpFileUpload.py -v -f certutil README.md
- **`Simulate-DNSTunnel.ps1`** - Performs DNS Tunnelling simulation for purpose of triggering installed Network IPS and IDS systems, generating SIEM offenses and picking up Blue Teams.
- **`ThreadStackSpoofer`** - A PoC implementation for an advanced in-memory evasion technique that spoofs Thread Call Stack. This technique allows to bypass thread-based memory examination rules and better hide shellcodes while in-process memory.
- **`UnhookMe`** - Dynamically unhooking imports resolver. Implementation of dynamic imports resolver that would be capable of unhooking used functions in-the-fly is yet another step towards strengthening adversary resilience efforts.
```

1
windows/ThreadStackSpoofer Submodule

Submodule windows/ThreadStackSpoofer added at d25cef0ff5