LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting its contents

Loading Remote AES Encrypted PE in memory , Decrypted it and run it

Advanced VM detection library and tool

PoC Implementation of a fully dynamic call stack spoofer

Bypass Credential Guard by patching WDigest.dll using only NTAPI functions

Weaponizing for privileged file writes bugs with windows problem reporting

Port of Cobalt Strike's Process Inject Kit

Create a new thread that will suspend every thread and encrypt its stack, then going to sleep , then decrypt the stacks and resume threads

Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar