Skip to content

Commit

Permalink
Update README.md
Browse files Browse the repository at this point in the history
  • Loading branch information
@Meowmycks
Meowmycks committed Jan 9, 2024
1 parent 856d474 commit 01f798c
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ Compile as a VS2022 project and ~~run with `NT AUTHORITY\SYSTEM` privileges~~ ru
## Features

- Uses polymorphism with compiletime RNG to always generate a unique file signature.
- Unhooks NTDLL to defeat EDR userland hooking.
- Unhooks NtReadVirtualMemory to defeat EDR userland hooking.
- Also tricks heuristics by performing multiple benign Windows API functions.
- Encrypting and encoding MiniDump in-memory means AV/EDRs *shouldn't* flag it.
- File deletes itself after running to try and prevent remnants from remaining on disk.
Expand Down

0 comments on commit 01f798c

Please sign in to comment.