BlackSnufkin / HolyGrailLinks
BYOVD hunter to help prioritize windows drivers worth manual analysis
☆34Updated 2 weeks ago
Alternatives and similar repositories for HolyGrail
Users that are interested in HolyGrail are comparing it to the libraries listed below
Sorting:
- An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.☆99Updated 2 months ago
- Help red teams find opsec processes during engagements☆42Updated 8 months ago
- ☆57Updated last year
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.☆41Updated 3 months ago
- A Simple PoC☆21Updated last year
- Execute shellcode via Bluetooth device authentication☆40Updated 6 months ago
- SharpSilentChrome is a C# project that "silently" installs browser extensions on Google Chrome or MS Edge by updating the browsers' Prefe…☆171Updated 3 weeks ago
- Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …☆85Updated 2 years ago
- Beacon Object File (BOF) Template☆55Updated 9 months ago
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆58Updated 6 months ago
- Using LNK files and user input simulation to start processes under explorer.exe☆26Updated 11 months ago
- Library of BOFs to interact with SQL servers☆22Updated 4 months ago
- A basic C2 framework written in C☆60Updated last year
- Evasive loader to bypass static detection☆58Updated last year
- ☆48Updated 4 months ago
- A COFF Loader written in Rust☆121Updated last week
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆17Updated 2 years ago
- Windows C++ Implant for Exploration C2☆39Updated last week
- Dumping App Bound Protected Credentials & Cookies Without Privileges.☆60Updated 3 months ago
- BypassCredGuard CS BOF☆45Updated 7 months ago
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆78Updated 4 months ago
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution☆49Updated last year
- An advanced utility for converting Windows Portable Executable (PE) files to position-independent code (PIC) shellcode. It enables execut…☆61Updated 6 months ago
- Golang implementation of @CCob's C# ThreadlessInject☆31Updated last year
- Indirect NT syscalls LSASS dumper.☆46Updated 2 years ago
- CVE-2024-40711-exp☆42Updated 10 months ago
- Use Rust to implement some Red Team techniques :)☆13Updated 9 months ago
- An Exercice for Red Team to Reverse & Exploit, that's a valide BYOVD Killer, not HVCI Blocklisted, and not in LOLBIN☆30Updated last month
- Sliver agent rewritten in C++☆48Updated last year
- Go Shellcode Loader to be Integrated in Exploration C2☆27Updated 6 months ago