1 个仓库
Modifying the structural metadata of binary executable headers to facilitate code injection.
Distinct from Executable Header Reconstruction: Distinct from Executable Header Reconstruction: focuses on the insertion of malicious code into headers rather than restoring corrupted or protected headers.
Explore 1 awesome GitHub repository matching operating systems & systems programming · Executable Header Injections. Refine with filters or upvote what's useful.
本项目是一个红队知识库和进攻性安全手册,旨在模拟对手行为。它作为技术指南和战术的综合集合,用于执行红队行动。 该存储库提供了 Active Directory 渗透测试的详细说明,包括 Kerberos 滥用和域权限提升。它涵盖了通过 API 解钩 (unhooking) 和载荷混淆进行的防御规避,以及涉及内核对象和系统内存操作的 Windows 内部研究。 功能范围扩展到网络渗透测试、恶意软件分析与工程,以及进攻性安全基础设施的部署。它还包括在企业环境中进行横向移动、持久化和数据外泄的方法。
Implements code injection by modifying the structural metadata of the executable file format.