BeetleChunks / ObligatoLinks
This project is an implant framework designed for long term persistent access to Windows machines.
☆110Updated last year
Alternatives and similar repositories for Obligato
Users that are interested in Obligato are comparing it to the libraries listed below
Sorting:
- Do some DLL SideLoading magic☆84Updated last year
- Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctype…☆118Updated last year
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- ☆107Updated 2 years ago
- ☆188Updated last year
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 2 months ago
- ☆125Updated last year
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆97Updated last year
- ☆136Updated 2 years ago
- Create Anti-Copy DRM Malware☆58Updated 10 months ago
- ☆119Updated last year
- Simple BOF to read the protection level of a process☆115Updated 2 years ago
- Construct the payload at runtime using an array of offsets☆63Updated last year
- POC for frustrating/defeating Malware Analysts☆154Updated 3 years ago
- Your syscall factory☆123Updated last week
- ☆155Updated 6 months ago
- A Mythic Agent written in PIC C.☆190Updated 4 months ago
- Bypass LSA protection using the BYODLL technique☆164Updated 9 months ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆90Updated last year
- I have documented all of the AMSI patches that I learned till now☆72Updated 2 months ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆145Updated 2 years ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆120Updated last year
- Local & remote Windows DLL Proxying☆164Updated last year
- Tool for playing with Windows Access Token manipulation.☆55Updated 2 years ago
- A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…☆161Updated last year
- ☆151Updated last year
- ☆132Updated 4 months ago
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆97Updated 2 years ago
- ☆110Updated 7 months ago