A Simple PoC
☆22May 24, 2024Updated last year
Alternatives and similar repositories for ThreadlessSpawn
Users that are interested in ThreadlessSpawn are comparing it to the libraries listed below
Sorting:
- A simple BOF (Beacon Object File) to search files in the system☆15Dec 2, 2023Updated 2 years ago
- A tracker DLL which enables 'NTAPI->Syscall' tracking whenever it is loaded. It calls 'NtSetInformationProcess' API call with a callback …☆14Oct 21, 2024Updated last year
- Windows PE - TLS (Thread Local Storage) Injector in C/C++☆109Jan 3, 2021Updated 5 years ago
- Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)☆144Mar 16, 2024Updated 2 years ago
- ☆29May 10, 2024Updated last year
- Golang tool designed to exfiltrate passwords found via the sshd and su services☆27Nov 23, 2025Updated 3 months ago
- Shadow Rebirth - An Aggressive Outbreak Anti-Debugging Technique☆20Dec 3, 2024Updated last year
- UAC Bypass via CMUACUtil & PEB Enumeration, Undetected for now.☆52May 8, 2024Updated last year
- Rust 重构的 sRDI☆17Sep 9, 2024Updated last year
- Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution☆199May 29, 2025Updated 9 months ago
- ☆37Feb 11, 2023Updated 3 years ago
- 看雪 LLVM与代码混淆技术 笔记☆23Aug 31, 2023Updated 2 years ago
- Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode☆203May 28, 2024Updated last year
- AV/EDR killer using BYOVD technique☆44Sep 27, 2024Updated last year
- 一个普通的BOF用来BypassUAC☆22Apr 6, 2024Updated last year
- A basic exemple of the API-Hashing method used by Red Teamers but also by malwares developers in C++☆37Jan 10, 2024Updated 2 years ago
- A command and control framework.☆54Dec 26, 2024Updated last year
- beta☆119Sep 24, 2024Updated last year
- This project is created for research into antivirus evasion by unhooking.☆18Sep 2, 2021Updated 4 years ago
- LOCAL AND REMOTE HOOK msv1_0!SpAcceptCredentials from LSASS.exe and DUMP DOMAIN/LOGIN/PASSWORD IN CLEARTEXT to text file.☆123Jan 27, 2020Updated 6 years ago
- Encode shellcode into dictionary words for evasion and entropy reduction☆40Dec 12, 2025Updated 3 months ago
- CobaltStrike beacon in rust☆208Aug 10, 2024Updated last year
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆54May 12, 2025Updated 10 months ago
- BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…☆395Jan 9, 2024Updated 2 years ago
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆78Dec 23, 2023Updated 2 years ago
- Evasive shellcode loader☆400Oct 17, 2024Updated last year
- 重构Beacon☆165Aug 19, 2024Updated last year
- Exploitation of process killer drivers☆204Oct 17, 2023Updated 2 years ago
- A runtime for developing large-scale and complex shellcode.☆22Mar 3, 2026Updated 2 weeks ago
- Shellcode Reductio Entropy Tools☆74Oct 8, 2023Updated 2 years ago
- ☆15Feb 9, 2022Updated 4 years ago
- C# API for Nidhogg rootkit☆21Apr 25, 2024Updated last year
- Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.☆65Jul 29, 2023Updated 2 years ago
- Sliver agent rewritten in C++☆49Sep 4, 2024Updated last year
- A tool that bypasses Windows Defender by manually loading DLLs, parsing EAT directly, and updating IAT with unhooked functions to run M…☆21Jul 14, 2024Updated last year
- DNS Tunneling as net.Conn☆16Dec 22, 2024Updated last year
- An example reference design for a proposed BOF PE☆202Jan 23, 2026Updated last month
- A BOF that runs unmanaged PEs inline☆683Oct 23, 2024Updated last year
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.☆72Mar 6, 2024Updated 2 years ago