0xrawsec / golang-etwLinks
β38Updated 2 years ago
Alternatives and similar repositories for golang-etw
Users that are interested in golang-etw are comparing it to the libraries listed below
Sorting:
- A PoC package for hosting the CLR and executing .NET from Goβ74Updated 10 months ago
- ππͺ² Malleable C2 profiles parser and assembler written in golangβ66Updated last year
- Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.β61Updated last year
- Go library for ETW (Event Tracing for Windows) events processingβ66Updated 2 years ago
- golang implementation of Syswhisper2/Syswhisper3β23Updated 3 years ago
- Simple PoCs for utilizing Windows syscalls in Goβ16Updated 4 years ago
- Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.β41Updated 2 years ago
- Client/server code that impersonates TLS 1.3 to disguise C2 activity.β68Updated 2 years ago
- Go implementation of the Heaven's Gate techniqueβ98Updated 4 years ago
- Lists of AMSI triggers (VBA, JScript / VBScript)β33Updated 5 years ago
- Fork of Wireguard's Memmodβ16Updated 2 years ago
- Reflectively load PEβ103Updated 4 years ago
- Savoir is a tool to perform tasks during internal security assessmentβ19Updated 2 years ago
- Extracts TEXT section of a PE, ELF, or Mach-O executable to shellcodeβ104Updated 2 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgersβ62Updated 2 years ago
- Golang implementation of @CCob's C# ThreadlessInjectβ32Updated last year
- Preventing 3rd Party DLLs from Injecting into your Malwareβ25Updated 3 years ago
- β18Updated 3 years ago
- β146Updated 2 years ago
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.β112Updated 3 years ago
- Proof of concept SMB C2 using named pipes in Golangβ25Updated 5 years ago
- β82Updated 3 years ago
- Beacon Object File (BOF) Templateβ51Updated 6 months ago
- Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDRβ101Updated 3 years ago
- I have created a small C# project that requests a Ticket Granting Service (TGS) ticket using KerberosSecurityTokenProvider to use for Kerβ¦β5Updated last year
- β44Updated last month
- Parses Cobalt Strike malleable C2 profiles.β56Updated 3 weeks ago
- β46Updated last year
- Golang evasion tool, execute-assembly .Net fileβ97Updated 3 years ago
- Simple windows rpc server for research purposes onlyβ82Updated 3 years ago