direct-syscalls topic

List direct-syscalls repositories

shadow_syscall

110
Stars
11
Forks
Watchers

windows syscalls with a single line and a high level of abstraction. has modern cpp20 wrappers and utilities, range-based DLL and export enumeration, wrapper around kuser_shared_data. supported compil...

verified publisher icon annihilatorq

DEFCON-31-Syscalls-Workshop

618
Stars
90
Forks
Watchers

Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".

verified publisher icon VirtualAlllocEx

Direct-Syscalls-vs-Indirect-Syscalls

159
Stars
20
Forks
Watchers

The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls

verified publisher icon VirtualAlllocEx

Direct-Syscalls-A-journey-from-high-to-low

127
Stars
20
Forks
Watchers

Start with shellcode execution using Windows APIs (high level), move on to native APIs (medium level) and finally to direct syscalls (low level).

verified publisher icon VirtualAlllocEx

DSC_SVC_REMOTE

50
Stars
10
Forks
Watchers

This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for local privilege escalation in the context of an unquoted service p...

verified publisher icon VirtualAlllocEx