Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: indirect-syscall

safedv/RustVEHSyscalls

A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.

Language: Rust - Size: 13.7 KB - Last synced at: 16 days ago - Pushed at: 6 months ago - Stars: 138 - Forks: 16

EvilBytecode/EByte-Shellcode-Loader

shellcode loader that uses indirect syscalls written in D Lang The loader bypasses user-mode hooks by resolving system calls manually from NTDLL using a hash-based method.

Language: D - Size: 142 KB - Last synced at: 6 days ago - Pushed at: 7 months ago - Stars: 9 - Forks: 1

notfell/pandore

A shellcode loader powered by a web panel.

Language: C++ - Size: 1.65 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 8 - Forks: 4

Cyb3rV1c/ShadowRust

A Rust Loader That Uses Indirect System Calls To Execute AES-Encrypted Payload From Given URL

Language: Rust - Size: 35.2 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

kaIIsyms/asb

in-memory patching of AmsiScanBuffer to bypass AMSI

Language: C - Size: 1.95 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0

k3lpi3b4nsh33/Lamia-Syscall-Template

A generic x64 indirect syscall template for RED TEAM OPSEC

Language: C - Size: 1.68 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 5 - Forks: 2

Vasco0x4/ShellLoader_Hub

Shellcode Loader Library.

Size: 9.77 KB - Last synced at: 10 days ago - Pushed at: 3 months ago - Stars: 9 - Forks: 1

Cyb3rV1c/Rust-IndirectSysCalls

A Rust-based tool that facilitates indirect system calls in Windows to inject shellcode.

Language: Rust - Size: 16.6 KB - Last synced at: 11 days ago - Pushed at: 4 months ago - Stars: 0 - Forks: 0

x0reaxeax/SysCook64

Indirect Syscall invocation via thread hijacking

Language: C - Size: 12.7 KB - Last synced at: 6 days ago - Pushed at: almost 2 years ago - Stars: 14 - Forks: 3

x0reaxeax/SyscallHookBypass

NTAPI hook bypass with (semi) legit stack trace

Language: C - Size: 8.79 KB - Last synced at: 6 days ago - Pushed at: almost 2 years ago - Stars: 14 - Forks: 2

Vith0r/Indirect-Syscalls

Indirect Syscalls Loader

Language: C - Size: 14.6 KB - Last synced at: 4 months ago - Pushed at: 6 months ago - Stars: 0 - Forks: 0

Cipher7/ApexLdr

ApexLdr is a DLL Payload Loader written in C

Language: C - Size: 738 KB - Last synced at: 9 months ago - Pushed at: 9 months ago - Stars: 72 - Forks: 16

hiatus/NtGate

Transparently call NTAPI via Halo's Gate with indirect syscalls.

Language: C - Size: 44.9 KB - Last synced at: 12 months ago - Pushed at: 12 months ago - Stars: 5 - Forks: 2

pard0p/CallstackSpoofingPOC

C++ self-Injecting dropper based on various EDR evasion techniques.

Language: C - Size: 46.9 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 255 - Forks: 55

Krypteria/AtlasLdr

Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls

Language: C++ - Size: 38.1 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 291 - Forks: 51

Related Keywords
indirect-syscall 15 av-evasion 6 edr-evasion 5 malware 5 redteam 4 loader 4 shellcode-loader 4 av-bypass 3 assembly-language 2 syscalls 2 hook-bypass 2 edr-bypass 2 detection-evasion 2 windows 2 fud 2 red-teaming 2 thread-context 1 rust-injector 1 hardware-breakpoint 1 antihooking 1 x86 1 dll-sideloading 1 dll-unhooking 1 threadpool 1 edr 1 hellsgate 1 malware-research 1 dropper 1 cpp 1 manualmapping 1 red-team 1 rust-lang 1 evasion 1 indirect-syscalls 1 shellcode 1 shellcode-laoder 1 shellcode-runner 1 panel 1 shellcode-injection 1 aes-encryption 1 amsi 1 amsi-bypass 1 amsi-patch 1 amsiscanbuffer 1 opsec 1 dll-hijacking 1 dll-hooking 1 dll-injection 1