Using call gadgets to break the call stack signature used by Elastic on proxying a module load. Provided as a Crystal Palace shared library. Format inspired by @rasta-mouse's LibTP.
☆88Nov 6, 2025Updated 7 months ago
Alternatives and similar repositories for LibTPLoadLib
Users that are interested in LibTPLoadLib are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆41Nov 25, 2025Updated 7 months ago
- Crystal Palace library for proxying Nt API calls via the Threadpool☆105Oct 18, 2025Updated 8 months ago
- Beacon Object Files (BOFs) for Cobalt Strike and Havoc C2. Implementations of Active Directory attacks and post-exploitation techniques.☆116Jan 26, 2026Updated 5 months ago
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆102Jan 2, 2026Updated 5 months ago
- some leaked src code for known and unknown malwares☆23Aug 15, 2025Updated 10 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Novel Windows process injection: assembles existing open handles (process & thread), natural RWX regions, and special user APC (NtQueueAp…☆75Feb 17, 2026Updated 4 months ago
- Templates for developing your own listeners and agents for AdaptixC2.☆55Feb 28, 2026Updated 4 months ago
- Atomic test units for BOF execution☆58Apr 26, 2026Updated 2 months ago
- A large collection of blogs 🦐☆13Apr 12, 2025Updated last year
- early cascade injection PoC based on Outflanks blog post, in rust☆64Nov 8, 2024Updated last year
- Notion C2 Profile for Mythic☆47Apr 30, 2026Updated last month
- ☆36Jul 1, 2025Updated 11 months ago
- 7 days of Red Teaming TTPs that your favorite tools may use to acheive a post exploitation goal☆19Apr 17, 2021Updated 5 years ago
- This is a PoC using native windows API directx, to hide and decrypt shellcode via compute shader☆10May 3, 2025Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread☆31Jan 9, 2022Updated 4 years ago
- Demo of process injection, using Nt, direct syscall, etc.☆27Sep 29, 2021Updated 4 years ago
- Linux Process Injection via Seccomp Notifier☆95Dec 9, 2025Updated 6 months ago
- Shellcode injection using the Windows Debugging API☆182Jan 4, 2026Updated 5 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆159Nov 2, 2025Updated 7 months ago
- A different approach to writing BOFs in rust.☆21Aug 20, 2025Updated 10 months ago
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆71Dec 25, 2025Updated 6 months ago
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆139Jan 28, 2026Updated 5 months ago
- Proof of Concepts code for Bring Your Own Vulnerable Driver techniques☆230Aug 21, 2025Updated 10 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- This project is a deliberately vulnerable environment to learn about LLM-specific risks based on the OWASP Top 10 for LLM Applications.☆55Jan 19, 2026Updated 5 months ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆73Nov 11, 2025Updated 7 months ago
- Finding Truth in the Shadows☆129Jan 26, 2023Updated 3 years ago
- A simple Sleepmask BOF example☆176Nov 24, 2025Updated 7 months ago
- BOF with Synthetic Stackframe☆250Oct 30, 2025Updated 7 months ago
- Built for red teamers, by red teamers - an MCP tool for malware development, OPSEC testing, and supporting custom loader design during re…☆46Aug 10, 2025Updated 10 months ago
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆69Jan 5, 2026Updated 5 months ago
- Proof-of-Concept to evade auditd by writing /proc/PID/mem☆25Aug 21, 2023Updated 2 years ago
- ☆109Oct 29, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, wit…☆296Feb 21, 2026Updated 4 months ago
- converts sRDI compatible dlls to shellcode☆39Jan 20, 2025Updated last year
- Sleep obfuscation☆275Dec 13, 2024Updated last year
- modified mssqlclient from impacket to extract policies from the SCCM database☆48Feb 24, 2026Updated 4 months ago
- MacOS Shared Library to Shellcode Loader☆70Feb 23, 2026Updated 4 months ago
- ☆69Apr 20, 2026Updated 2 months ago
- One WSL BOF to rule them all☆177Jan 14, 2026Updated 5 months ago