Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/hlldz/RefleXXion
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array.
https://github.com/hlldz/RefleXXion
Last synced: 3 months ago
JSON representation
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array.
- Host: GitHub
- URL: https://github.com/hlldz/RefleXXion
- Owner: hlldz
- Archived: true
- Created: 2022-01-25T16:50:34.000Z (almost 3 years ago)
- Default Branch: main
- Last Pushed: 2022-01-25T17:06:21.000Z (almost 3 years ago)
- Last Synced: 2024-05-08T01:31:59.819Z (6 months ago)
- Language: C++
- Homepage:
- Size: 216 KB
- Stars: 478
- Watchers: 7
- Forks: 103
- Open Issues: 0
Awesome Lists containing this project
- awesome-hacking-lists - hlldz/RefleXXion - RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCrea (C++)