Awesome-Mirrors/my-infosec-awesome
1
0
Fork 0
mirror of https://github.com/pe3zx/my-infosec-awesome.git synced 2024-10-01 07:45:36 -04:00
Code Issues Packages Projects Releases Wiki Activity

Add: mgeeky/ThreadStackSpoofer to Defense Evasion section

Browse Source
This commit is contained in:
pe3zx 2021-09-30 16:16:39 +07:00
parent e45511bec0
commit 7d555e2e31
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
Offensive.md
View File

@ -1335,6 +1335,10 @@ Some tools can be categorized in more than one category. But because the current
<td><a href="https://github.com/mgeeky/Stracciatella">mgeeky/Stracciatella</a></td> <td><a href="https://github.com/mgeeky/Stracciatella">mgeeky/Stracciatella</a></td>
<td>OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at startup</td> <td>OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at startup</td>
</tr> </tr>
<tr>
<td><a href="https://github.com/mgeeky/ThreadStackSpoofer">mgeeky/ThreadStackSpoofer</a></td>
<td>Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.</td>
</tr>
<tr> <tr>
<td><a href="https://github.com/MinervaLabsResearch/CoffeeShot">MinervaLabsResearch/CoffeeShot</a></td> <td><a href="https://github.com/MinervaLabsResearch/CoffeeShot">MinervaLabsResearch/CoffeeShot</a></td>
<td>CoffeeShot: Avoid Detection with Memory Injection</td> <td>CoffeeShot: Avoid Detection with Memory Injection</td>