The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls
Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls
Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2
ETW based POC to identify direct and indirect syscalls
Indirect syscalls + DInvoke made simple.
Single stub direct and indirect syscalling with runtime SSN resolving for windows.
HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
Source generator to add D/Invoke and indirect syscall methods to a C# project.
UUID shellcode Loader with dynamic indirect syscall implementation, syscall number/instruction get resolved dynamicaly at runtime, and the syscall number/instruction get unhooked using Halosgate techn...
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDl...
LuaJIT Unix syscall FFI
Windows NT Syscall tables
Syscall Shellcode Loader (Work in Progress)
Dectect syscall hooking using eBPF
WASI syscall API built atop libuv
windows syscall table from xp ~ 10 rs4
Tools and PoCs for Windows syscall investigation.
Every Rails page has footnotes that gives information about your application and links back to your editor
翻译 - [无法维护-寻找维护人员]每个Rails页面都有脚注,这些脚注可提供有关您的应用程序的信息并链接回您的编辑器
A kernelspace syscall interceptor and randomized faulter
翻译 - 内核空间系统调用拦截器和随机故障处理程序
Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+
Userspace eBPF runtime for Observability, Network & General Extensions Framework