Snippet List

Technique Language Author OS Creation Date
SIDT, Red Pill C++ Unprotect Windows 3 years, 4 months
Geofencing C++ fr0gger Windows 3 years, 4 months
Hiding Mechanisms C++ fr0gger Windows 3 years, 4 months
XOR Operation C++ fr0gger Windows 3 years, 4 months
Unloading Sysmon Driver C++ Unprotect Windows 3 years, 4 months
Parent Process Detection C++ Unprotect Windows 3 years, 4 months
Thwarting Stack-Frame Analysis C++ Unprotect Windows 3 years, 4 months
Misusing Structured Exception Handlers C++ Unprotect Windows 3 years, 4 months
Control Flow Graph Flattening C++ Unprotect Windows 3 years, 4 months
Obscuring Control Flow Using Pointers C++ Unprotect Windows 3 years, 4 months
Obscuring Control Flow C++ Unprotect Windows 3 years, 4 months
Jump With Same Target C++ Unprotect Windows 3 years, 4 months
Dynamically Computed Target Address C++ Unprotect Windows 3 years, 4 months
Disassembly Desynchronization C++ Unprotect Windows 3 years, 4 months
NOP Sled C++ Unprotect Windows 3 years, 4 months
Call Trick C++ Unprotect Windows 3 years, 4 months
Inserting Garbage Bytes C++ Unprotect Windows 3 years, 4 months
Code Transposition C++ Unprotect Windows 3 years, 4 months
Interrupts C++ Unprotect Windows 3 years, 4 months
Hook Injection C++ Unprotect Windows 3 years, 4 months
Tamper DLL Export Names & GetProcAddress Spoofing C++ Alex Schwarz Windows 3 years, 8 months
Hijack Execution Flow: DLL Search Order Hijacking C++ Sh0ckFR Windows 3 years, 9 months
DLL Proxying C++ Sh0ckFR Windows 3 years, 9 months
Change Module Base Address at Runtime C++ Alex Schwarz Windows 3 years, 9 months
Change Module Name at Runtime C++ Alex Schwarz Windows 3 years, 9 months
Windows Event Log Evasion via Native APIs C++ External Windows 3 years, 10 months
RDTSC C++ External Windows 3 years, 10 months
NtQueryObject C++ External Windows 3 years, 10 months
CsrGetProcessID C++ External Windows 3 years, 10 months
CloseHandle, NtClose C++ External Windows 3 years, 10 months
Filter
Clear