0xsp-SRD/callback_injection-Csharp external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0xsp-SRD/callback_injection-Csharp

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0xsp-SRD/callback_injection-Csharp)

Close

0xsp-SRD / callback_injection-CsharpView on GitHubMore

• External links
• Readme badge

this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback functions

☆88Jun 24, 2022Updated 3 years ago

Alternatives and similar repositories for callback_injection-Csharp

Users that are interested in callback_injection-Csharp are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• S4ntiagoP / freeBokuLoader

  View on GitHub
  A simple BOF that frees UDRLs
  ☆124May 29, 2022Updated 4 years ago
• Wra7h / SharpGhosting

  View on GitHub
  Process Ghosting in C#
  ☆221Jan 24, 2022Updated 4 years ago
• RedSiege / What-The-F

  View on GitHub
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆70Jun 25, 2024Updated last year
• NVISOsecurity / brown-bags

  View on GitHub
  ☆112Jul 24, 2023Updated 2 years ago
• shogunlab / Mochi

  View on GitHub
  Mochi is a proof-of-concept C++ loader that leverages the ChaiScript embedded scripting language to execute code.
  ☆100Mar 27, 2022Updated 4 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• BronzeTicket / ClipboardWindow-Inject

  View on GitHub
  CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback
  ☆66Sep 15, 2022Updated 3 years ago
• FalconForceTeam / BOF2shellcode

  View on GitHub
  POC tool to convert CobaltStrike BOF files to raw shellcode
  ☆220Nov 5, 2021Updated 4 years ago
• GetRektBoy724 / SharpUnhooker

  View on GitHub
  C# Based Universal API Unhooker
  ☆408Feb 18, 2022Updated 4 years ago
• sbasu7241 / HellsGate

  View on GitHub
  Rewrote HellsGate in C# for fun and learning
  ☆85Feb 10, 2022Updated 4 years ago
• mdsecactivebreach / SharpAltiris

  View on GitHub
  ☆25Jul 7, 2022Updated 3 years ago
• Allevon412 / TeamsImplant

  View on GitHub
  ☆210Feb 24, 2022Updated 4 years ago
• codewhitesec / Lastenzug

  View on GitHub
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆234Oct 18, 2022Updated 3 years ago
• boku7 / halosgate-ps

  View on GitHub
  Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes
  ☆108Mar 8, 2023Updated 3 years ago
• nettitude / RunOF

  View on GitHub
  ☆153Jan 6, 2023Updated 3 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• thefLink / DeepSleep

  View on GitHub
  A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC
  ☆377May 24, 2022Updated 4 years ago
• Cracked5pider / CoffeeLdr

  View on GitHub
  Beacon Object File Loader
  ☆295Dec 3, 2023Updated 2 years ago
• NUL0x4C / KnownDllUnhook

  View on GitHub
  Replace the .txt section of the current loaded modules from \KnownDlls\
  ☆306Sep 28, 2022Updated 3 years ago
• Octoberfest7 / EventViewerUAC_BOF

  View on GitHub
  Beacon Object File implementation of Event Viewer deserialization UAC bypass
  ☆132May 6, 2022Updated 4 years ago
• rad9800 / WTSRM2

  View on GitHub
  ☆164Dec 30, 2022Updated 3 years ago
• med0x2e / vba2clr

  View on GitHub
  Running .NET from VBA
  ☆147Feb 11, 2023Updated 3 years ago
• netero1010 / RDPHijack-BOF

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.
  ☆316Jul 8, 2022Updated 3 years ago
• boku7 / injectAmsiBypass

  View on GitHub
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆381Mar 8, 2023Updated 3 years ago
• S3cur3Th1sSh1t / Nim_DInvoke

  View on GitHub
  D/Invoke implementation in Nim
  ☆101Jun 8, 2022Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• Wra7h / ARCInject

  View on GitHub
  Overwrite a process's recovery callback and execute with WER
  ☆104Apr 17, 2022Updated 4 years ago
• Flangvik / RosFuscator

  View on GitHub
  YouTube/Livestream project for obfuscating C# source code using Roslyn
  ☆129May 9, 2021Updated 5 years ago
• ChoiSG / OneDriveUpdaterSideloading

  View on GitHub
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆101Oct 13, 2022Updated 3 years ago
• xforcered / WFH

  View on GitHub
  ☆199Aug 17, 2022Updated 3 years ago
• mobdk / WinBoost

  View on GitHub
  Execute Mimikatz with different technique
  ☆51Nov 8, 2021Updated 4 years ago
• mobdk / Core

  View on GitHub
  Core bypass Windows Defender and execute any binary converted to shellcode
  ☆44Oct 12, 2021Updated 4 years ago
• rad9800 / misc

  View on GitHub
  miscellaneous scripts and programs
  ☆286May 13, 2026Updated 3 weeks ago
• daem0nc0re / TangledWinExec

  View on GitHub
  PoCs and tools for investigation of Windows process execution techniques
  ☆960Feb 2, 2026Updated 4 months ago
• boku7 / injectEtwBypass

  View on GitHub
  CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)
  ☆300Sep 28, 2021Updated 4 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• jackullrich / universal-syscall-64

  View on GitHub
  Resolve syscall numbers at runtime for all Windows versions.
  ☆60Nov 21, 2024Updated last year
• thefLink / RecycledGate

  View on GitHub
  Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll
  ☆508Feb 3, 2022Updated 4 years ago
• Octoberfest7 / BeatRev

  View on GitHub
  POC for frustrating/defeating Malware Analysts
  ☆156Jun 12, 2022Updated 3 years ago
• redteamertips / DinvokeDupetokenAndThreadSwitcheroo

  View on GitHub
  ☆26May 22, 2021Updated 5 years ago
• nettitude / ShellcodeMutator

  View on GitHub
  ☆246Dec 16, 2022Updated 3 years ago
• jfmaes / AmsiHooker

  View on GitHub
  Hookers are cooler than patches.
  ☆170Jan 21, 2022Updated 4 years ago
• X-C3LL / SharpNTLMRawUnHide

  View on GitHub
  C# version of NTLMRawUnHide
  ☆72Oct 8, 2022Updated 3 years ago