8 open source projects by hlldz

Windows active user credential phishing tool

Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.

Brute forcer and shell deployer for WildFly

Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures.

Windows Event Log Killer

A tool that detects the privilege escalation vulnerabilities caused by misconfigurations and missing updates in the Windows operating systems.

Windows Event Log Killer

RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array.