Snippet List

Technique Language Author Creation Date
Change Module Name at Runtime C++ Alex Schwarz 1 year, 2 months
FLIRT Signatures Evasion Assembly Lexsek 1 year, 3 months
Windows Event Log Evasion via Native APIs C++ External 1 year, 3 months
Process Hollowing, RunPE Delphi Jean-Pierre LESUEUR 1 year, 3 months
RDTSC C++ External 1 year, 3 months
NtQueryObject C++ External 1 year, 3 months
CsrGetProcessID C++ External 1 year, 3 months
CloseHandle, NtClose C++ External 1 year, 3 months
Heap Flag C++ External 1 year, 3 months
GetTickCount C++ External 1 year, 3 months
GetLocalTime, GetSystemTime, timeGetTime, NtQueryPerformanceCounter C++ External 1 year, 3 months
Performing Code Checksum C++ External 1 year, 3 months
Unhandled Exception Filter C++ External 1 year, 3 months
Trap Flag C++ External 1 year, 3 months
INT 0x2D C++ External 1 year, 3 months
Trap Flag Assembly External 1 year, 3 months
ICE 0xF1 Assembly External 1 year, 3 months
INT 0x2D Assembly External 1 year, 3 months
INT3 Instruction Scanning Assembly External 1 year, 3 months
INT3 Instruction Scanning C++ External 1 year, 3 months
Bad String Format MASM External 1 year, 3 months
SuspendThread C++ External 1 year, 3 months
NLS Code Injection Through Registry C++ Unprotect 1 year, 3 months
Shellcode Injection via CreateThreadpoolWait C++ Unprotect 1 year, 3 months
APC injection C++ Unprotect 1 year, 3 months
IAT Hooking C++ Unprotect 1 year, 3 months
Execution Guardrails: Environmental Keying C++ Unprotect 1 year, 3 months
Unloading Sysmon Driver cmd Unprotect 1 year, 3 months
API Obfuscation C++ Unprotect 1 year, 3 months
Reflective DLL injection C++ Unprotect 1 year, 3 months
Filter
Clear