BernKing / ChromeStealer

Related projects: ⓘ

• SaadAhla / VT-stealer
  VirusTotal Stealer is a DATA Exfiltration tool that exfitrate office documents and tunnel them over VirusTotal API to the Team Server
  ☆62Updated 11 months ago
• RtlDallas / vs-shellcode
  ☆55Updated this week
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆43Updated 4 months ago
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆52Updated last month
• Karkas66 / CelestialSpark
  A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust
  ☆79Updated 5 months ago
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆20Updated this week
• b4rth0v5k1 / EarlyBirdNTDLL
  ☆33Updated last year
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆72Updated last year
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆59Updated 3 months ago
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆55Updated 5 months ago
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆49Updated last year
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆81Updated 7 months ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆59Updated last month
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated 6 months ago
• vatsalgupta67 / Process-Hollowing
  Red Team Operation's Defense Evasion Technique.
  ☆50Updated 3 months ago
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆51Updated last month
• securityandstuff / DynamicFinder
  ☆65Updated this week
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆54Updated 3 months ago
• realoriginal / ghost
  ☆27Updated this week
• joe-desimone / rep-research
  ☆62Updated last month
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated 2 months ago
• knight0x07 / DarkGate-Install-Script-via-DNS-TXT-Record
  PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
  ☆37Updated 9 months ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆16Updated last year
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆38Updated 4 years ago
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆53Updated last year
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆41Updated last year
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆26Updated 5 months ago
• xalicex / LOLDrivers_finder
  ☆70Updated last year
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆23Updated 6 months ago
• amauricio / junkshell
  ☆24Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year