Skip to content
/ DlangWhispers Public

Implementation Of SysWhispers Direct / Indirect System Call Technique In D.

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

dk0m/DlangWhispers

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
Direct
Direct
 
 
Indirect
Indirect
 
 
data
data
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
gen.py
gen.py
 
 

Repository files navigation

DlangWhispers

Implementation Of SysWhispers Direct System Call Technique In D.

Usage

$ python gen.py --type direct --functions NtAllocateVirtualMemory,NtProtectVirtualMemory,NtWriteVirtualMemory,NtCreateThreadEx --output syscalls.d

Acknowledgement

Thanks to SysWhispers2 for alot of ideas for this, SysWhispers2's inline assembly has been used in this project. KlezVirus for the function prototypes JSON file and SysWhispers3 project.

Problems With Generator

Due to the nature of C and D structs and them being different, Their conversion can be really tedious, Hence why I only made the generator output function definitions.

About

Implementation Of SysWhispers Direct / Indirect System Call Technique In D.

Topics

windows malware dlang evasion windows-internals edr-evasion syswhispers

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages