Shellcode obfuscation tool to avoid AV/EDR.
-
Updated
Sep 1, 2023 - C++
Shellcode obfuscation tool to avoid AV/EDR.
This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hollowing
Add a description, image, and links to the dll-unhooking topic page so that developers can more easily learn about it.
To associate your repository with the dll-unhooking topic, visit your repo's landing page and select "manage topics."