Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/hlldz/RefleXXion
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array.
https://github.com/hlldz/RefleXXion
Last synced: 21 days ago
JSON representation
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array.
- Host: GitHub
- URL: https://github.com/hlldz/RefleXXion
- Owner: hlldz
- Archived: true
- Created: 2022-01-25T16:50:34.000Z (almost 3 years ago)
- Default Branch: main
- Last Pushed: 2022-01-25T17:06:21.000Z (almost 3 years ago)
- Last Synced: 2024-08-05T17:27:12.431Z (4 months ago)
- Language: C++
- Homepage:
- Size: 216 KB
- Stars: 480
- Watchers: 7
- Forks: 104
- Open Issues: 0
Awesome Lists containing this project
- awesome-hacking-lists - hlldz/RefleXXion - RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCrea (C++)