Indirect Syscalls: HellsGate in Nim, but making sure that all syscalls go through NTDLL (as in RecycledGate).
-
Updated
Feb 12, 2023 - Nim
#
hellsgate
Here are 5 public repositories matching this topic...
Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust
rust
malware
rust-lang
pentesting
malware-research
pentest
offensive-security
bypass-antivirus
antivirus-evasion
pentest-tool
redteaming
redteam
redteam-tools
edr-bypass
bypass-edr
edr-evasion
antivirus-bypass
hellsgate
hells-gate
-
Updated
Jun 4, 2024 - Rust
Transparently call NTAPI via Halo's Gate with indirect syscalls.
-
Updated
Apr 26, 2024 - C
Fetching System Call Service Numbers From The Control Flow Guard Function Table.
-
Updated
Jul 21, 2024 - C++
Improve this page
Add a description, image, and links to the hellsgate topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the hellsgate topic, visit your repo's landing page and select "manage topics."