AleDiBen / RevShellLinks
C-based Reverse Shell that uses CMD or PowerShell
☆16Updated 5 years ago
Alternatives and similar repositories for RevShell
Users that are interested in RevShell are comparing it to the libraries listed below
Sorting:
- Reverse shell without Windows cmd.exe, using ReactOS cmd.dll as shellcode☆23Updated 5 years ago
- A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.☆40Updated 4 years ago
- CSharp Writeups for HackSys Extreme Vulnerable Driver☆44Updated 3 years ago
- Nice try reading NTDLL from disk, nerd.☆19Updated 3 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆31Updated 6 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆40Updated 4 years ago
- Injects shellcode into remote processes using direct syscalls☆77Updated 4 years ago
- Collection of shellcode injection and execution techniques☆18Updated 2 months ago
- Offensive RPC PoC☆88Updated 4 years ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 4 years ago
- ☆65Updated 3 years ago
- ☆22Updated 4 years ago
- ☆50Updated 5 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆79Updated 5 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 4 years ago
- ollvm, based on llvm-clang 5.0.2, 6.0.1, 7.0.1, 8.0, 9.0, 9.0.1☆19Updated 3 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆91Updated 4 years ago
- ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Ima…☆40Updated 2 years ago
- all credits go to @mgeeky☆64Updated 4 years ago
- A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯☆39Updated 4 years ago
- Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets☆48Updated 4 years ago
- I used this to see if an EDR is running in Safe Mode☆36Updated 4 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 3 years ago
- improving zerosums smbdoor - a silent remote backdoor which abuses undoc. APIs in srvnet.sys☆50Updated 2 years ago
- Run shellcode through InnoSetup code engine.☆70Updated 2 years ago
- Send message on Telegram when you get a new Cobalt Strike beacon☆21Updated 5 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆57Updated 3 years ago
- AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.☆66Updated 5 years ago
- A CUSTOM CODED FUD DLL, CODED IN C , WHEN LOADED , VIA A DECOY WEB-DELIVERY MODULE( FIRING A DECOY PROGRAM), WILL GIVE A REVERSE SHELL (P…☆33Updated 6 years ago
- Just another casual shellcode native loader☆24Updated 3 years ago