0xTriboulet / emerald_templateLinks
A cmake template for crystal palace
☆38Updated last month
Alternatives and similar repositories for emerald_template
Users that are interested in emerald_template are comparing it to the libraries listed below
Sorting:
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆63Updated last year
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆60Updated last month
- Cobalt Strike UDRL for memory scanner evasion.☆52Updated 2 years ago
- Calling the undocumented DPAPI RPC interface directly, no more calling public CryptUnprotectData!☆66Updated last week
- A way to maintain long-term access to Windows LAPS for lateral movement in AD via installing an Offensive LAPS RPC backdoor on a DC.☆29Updated 8 months ago
- Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11☆81Updated 2 weeks ago
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆63Updated 7 months ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆42Updated 2 years ago
- Beacon Debugger☆55Updated last year
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆85Updated 3 months ago
- A bunch of shenanigans using functions, VEH and more☆37Updated 8 months ago
- Toolset to manipulate RPC clients by finding delayed services and masquerading as them☆107Updated 5 months ago
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆57Updated 9 months ago
- ☆55Updated 8 months ago
- A PoC UDRL for Cobalt Strike built with Crystal Palace that combines Raphael Mudge's page streaming technique with a modular call gate (D…☆65Updated 3 weeks ago
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆128Updated 2 weeks ago
- A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…☆59Updated 10 months ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆78Updated 5 months ago
- ☆57Updated 2 years ago
- Post-Ex BOF tooling for Hannibal☆24Updated last year
- UDC2 implementation that provides an ICMP C2 channel☆115Updated 2 months ago
- A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure …☆19Updated 11 months ago
- A hacky way of getting cross-arch/platform support in Cobalt Strike☆37Updated 5 months ago
- A work in progress BOF/COFF loader in Rust☆50Updated 2 years ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Updated last year
- FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…☆42Updated 10 months ago
- Execute commands, in/exfiltrate files using your custom RPC Server☆63Updated 3 weeks ago
- Load and execute a common object file format (COFF) in the current process☆32Updated last year
- Less sugar (entropy) for your binaries☆34Updated 5 months ago
- ☆33Updated 10 months ago