7h3w4lk3r / Kill-FloorLinks
AV/EDR killer using BYOVD technique
☆35Updated 11 months ago
Alternatives and similar repositories for Kill-Floor
Users that are interested in Kill-Floor are comparing it to the libraries listed below
Sorting:
- A nim implementation of sRDI☆19Updated last year
- Winsocket for Cobalt Strike.☆99Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray☆46Updated 2 years ago
- Beacon Object Files.☆37Updated last year
- 汇编语言编写Shellcode加载器源代码 https://payloads.online/archivers/2022-02-16/1/☆78Updated 2 years ago
- Evasive loader to bypass static detection☆59Updated last year
- BOF/COFF obj file to PIC(shellcode). by golang☆39Updated 2 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.☆83Updated 2 years ago
- ☆42Updated last year
- A SigFlip implement in golang☆46Updated 3 years ago
- Detect Beacon Powerful (Include CobatStrike 4.10 Aha~)☆21Updated 11 months ago
- A work in progress of constructing a minimal http(s) beacon for Cobalt Strike.☆25Updated 3 years ago
- List/Read contents of Zip files (in memory and without extraction) using CobaltStrike's Execute-Assembly☆60Updated 3 years ago
- More EFS coerced authentication method with PetitPotam.py☆26Updated 2 years ago
- Use CMSTP.exe to bypass UAC.☆50Updated 3 years ago
- ☆41Updated 2 years ago
- ☆16Updated 2 years ago
- Titan: A generic user defined reflective DLL for Cobalt Strike☆77Updated 2 years ago
- Learning notes of amazing Sliver C2 project.☆25Updated 2 years ago
- frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can …☆53Updated 2 years ago
- Windows Service with the implementation of the Process hollowing technique to run shellcode☆14Updated 2 years ago
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆58Updated 6 months ago
- Indirect NT syscalls LSASS dumper.☆46Updated 2 years ago
- A Simple PoC☆21Updated last year
- CVE-2024-40711-exp☆42Updated 11 months ago
- dump lsass tool☆38Updated 2 years ago
- This contains a number of examples demonstrating how to use callback functions in supported aggressor script functions☆35Updated 6 months ago
- Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;☆32Updated 3 years ago
- shadow tls client☆14Updated 2 years ago
- BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel☆26Updated last year