Snippet List

Technique Language Author Creation Date
Interrupts C++ Unprotect 3 months, 2 weeks
DLL Proxying Python Unprotect 3 months, 2 weeks
Hook Injection Python Unprotect 3 months, 2 weeks
Hook Injection C++ Unprotect 3 months, 2 weeks
APC injection Delphi Jean-Pierre LESUEUR 6 months, 2 weeks
APC injection Delphi Jean-Pierre LESUEUR 6 months, 2 weeks
Tamper DLL Export Names & GetProcAddress Spoofing C++ Alex Schwarz 7 months, 2 weeks
Indicator Removal: Timestomp C# Jean-Pierre LESUEUR 7 months, 2 weeks
Hijack Execution Flow: DLL Search Order Hijacking C++ Sh0ckFR 8 months
DLL Proxying C++ Sh0ckFR 8 months
DLL Proxying Python Sh0ckFR 8 months
Change Module Base Address at Runtime C++ Alex Schwarz 8 months, 1 week
Change Module Name at Runtime C++ Alex Schwarz 8 months, 1 week
FLIRT Signatures Evasion Assembly Lexsek 8 months, 3 weeks
Windows Event Log Evasion via Native APIs C++ External 9 months
Process Hollowing, RunPE Delphi Jean-Pierre LESUEUR 9 months
RDTSC C++ External 9 months
NtQueryObject C++ External 9 months
CsrGetProcessID C++ External 9 months
CloseHandle, NtClose C++ External 9 months
Heap Flag C++ External 9 months
GetTickCount C++ External 9 months
GetLocalTime, GetSystemTime, timeGetTime, NtQueryPerformanceCounter C++ External 9 months
Performing Code Checksum C++ External 9 months
Unhandled Exception Filter C++ External 9 months
Trap Flag C++ External 9 months
INT 0x2D C++ External 9 months
Trap Flag Assembly External 9 months
ICE 0xF1 Assembly External 9 months
INT 0x2D Assembly External 9 months
Filter
Clear