frkngksl/ParallelNimcalls frkngksl/ParallelNimcalls

  • Stars
    star
    119
  • Rank 297,930 (Top 6 %)
  • Language
    Nim
  • Created almost 3 years ago
  • Updated over 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
frkngksl/ParallelNimcalls
github

frkngksl

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Nim version of MDSec's Parallel Syscall PoC

ParallelNimcalls

This repo contains the Nim variant of the recent MDSec's research which is Parallel Syscalls.

You can use this code to load a clean version of ntdll.dll from the filesystem.

image

Compilation

You can directly compile the source code with the following command:

nim c -d:release --opt:size --passC:"-masm=intel" Main.nim

In case you get the error "cannot open file: winim/lean", you should also install winim dependency:

nimble install winim

Reference

More Repositories

1

Huan

Encrypted PE Loader Generator
C
502
star
2

Shoggoth

Shoggoth: Asmjit Based Polymorphic Encryptor
C++
323
star
3

NiCOFF

COFF and BOF Loader written in Nim
Nim
145
star
4

Celeborn

Userland API Unhooker Project
C
104
star
5

HintInject

A PoC project for embedding shellcode to Hint/Name Table
C++
103
star
6

NimicStack

NimicStack is the pure Nim implementation of Call Stack Spoofing technique to mimic legitimate programs
Nim
84
star
7

FixedInvokeMimikatz

Fixed version of PowerSploit implemented Invoke-Mimikatz
PowerShell
6
star
8

BurpUploader

Burp Extension that implements upload file content feature
Python
5
star
9

LoRa-AODV-Routing

LoRa AODV Routing Protocol implementation modifying FLoRa framework. It works on Omnet++
C++
5
star
10

frkngksl.github.io

My Academic Website
HTML
3
star
11

UnlinkDLL

DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
Nim
2
star