Snippet List

Technique Language Author Creation Date
Windows Event Log Evasion via Native APIs C++ External 1 week, 2 days
RDTSC C++ External 2 weeks
NtQueryObject C++ External 2 weeks
CsrGetProcessID C++ External 2 weeks
CloseHandle, NtClose C++ External 2 weeks
Heap Flag C++ External 2 weeks
GetTickCount C++ External 2 weeks
GetLocalTime, GetSystemTime, timeGetTime, NtQueryPerformanceCounter C++ External 2 weeks
Performing Code Checksum C++ External 2 weeks
Unhandled Exception Filter C++ External 2 weeks
Trap Flag C++ External 2 weeks
INT 0x2D C++ External 2 weeks
INT3 Instruction Scanning C++ External 2 weeks
SuspendThread C++ External 2 weeks
NlsCodeInjectionThroughRegistry C++ Unprotect 2 weeks, 2 days
API Obfuscation C++ Unprotect 2 weeks, 3 days
Parent PID Spoofing C++ Unprotect 2 weeks, 3 days
IAT Hooking C++ Unprotect 2 weeks, 3 days
Shellcode Injection via CreateThreadpoolWait C++ Unprotect 2 weeks, 3 days
PE Injection C++ Unprotect 2 weeks, 3 days
APC injection C++ Unprotect 2 weeks, 3 days
Reflective DLL injection C++ Unprotect 2 weeks, 3 days
Killing Windows Event Log C++ Unprotect 2 weeks, 3 days
Execution Guardrails: Environmental Keying C++ Unprotect 2 weeks, 3 days
ProcEnvInjection - Remote code injection by abusing process environment strings C++ Unprotect 3 weeks, 2 days
Process Herpaderping C++ Unprotect 2 months
Disabling Event Tracing for Windows (ETW) C++ Unprotect 2 months, 2 weeks
User Interaction (Are you human?) C++ Halil Dalabasmaz 11 months, 2 weeks
Parent PID Spoofing C++ Halil Dalabasmaz 11 months, 2 weeks
Detecting Online Sandbox C++ Kağan IŞILDAK 1 year

Filter