BelodedAleksey / go_libpeconv
Golang version of https://github.com/hasherezade/libpeconv
☆27Updated 5 years ago
Alternatives and similar repositories for go_libpeconv:
Users that are interested in go_libpeconv are comparing it to the libraries listed below
- execute a PE in the address space of another PE aka process hollowing☆55Updated 3 years ago
- Reflective DLL loading of your favorite Golang program☆168Updated 5 years ago
- Allow a Go process to dynamically load .NET assemblies☆148Updated 5 years ago
- C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread☆119Updated 6 years ago
- Reflectively load PE☆103Updated 4 years ago
- Go implementation of the Heaven's Gate technique☆98Updated 4 years ago
- Injects shellcode into remote processes using direct syscalls☆77Updated 4 years ago
- C++ implant that interfaces with a SK8PARK server☆49Updated 3 years ago
- DoppelGate relies on reading ntdll on disk to grab syscall stubs, and patches these syscall stubs into desired functions to bypass Userla…☆121Updated 3 years ago
- ☆112Updated 4 years ago
- C# PoC implementation for bypassing AMSI via in memory patching☆65Updated 4 years ago
- Example code for using named pipe output with beacon ReflectiveDLLs☆116Updated 4 years ago
- Shellcode injector using direct syscalls☆119Updated 4 years ago
- PoC to interact with local/remote registry hives through WMI☆85Updated 4 years ago
- Cobalt Strike BOF Files with Nim!☆84Updated 2 years ago
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.☆112Updated 3 years ago
- Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.☆84Updated 5 years ago
- ☆50Updated 4 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆93Updated 3 years ago
- External C2 Using IE COM Objects☆100Updated 6 years ago
- Initial Commit of Coresploit☆56Updated 3 years ago
- Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS us…☆71Updated 4 years ago
- C++ function that will automagically unhook a specified Windows API☆62Updated 4 years ago
- ☆70Updated 3 years ago
- Evasive Process Hollowing Techniques☆139Updated 4 years ago
- Slui File Handler Hijack UAC Bypass Local Privilege Escalation☆92Updated 2 years ago
- Process Injection Techniques with Golang☆77Updated 4 years ago
- Reflective DLL Injection with obfuscated (XOR) shellcode☆73Updated 4 years ago
- Suite of Shellcode Running Utilities☆111Updated 5 years ago
- Yet another LSASS dumper☆76Updated 4 years ago