BlackSnufkin / Rusty-Playground

Related projects: ⓘ

• securifybv / BOFRyptor
  ☆113Updated 11 months ago
• RtlDallas / OdinLdr
  ☆179Updated this week
• nettitude / Tartarus-TpAllocInject
  ☆172Updated 9 months ago
• Kudaes / ADPT
  DLL proxying for lazy people
  ☆129Updated 3 weeks ago
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆197Updated this week
• Cipher7 / ApexLdr
  ApexLdr is a DLL Payload Loader written in C
  ☆98Updated 2 months ago
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆91Updated last year
• CICADA8-Research / COMThanasia
  A set of programs for analyzing common vulnerabilities in COM
  ☆94Updated last week
• ipSlav / DirtyCLR
  An App Domain Manager Injection DLL PoC on steroids
  ☆155Updated 9 months ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆158Updated 3 months ago
• OtterHacker / SetProcessInjection
  ☆142Updated 11 months ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated 9 months ago
• Kudaes / rust_tips_and_tricks
  Rust For Windows Cheatsheet
  ☆104Updated 3 weeks ago
• thiagopeixoto / massayo
  Massayo is a small proof-of-concept Rust library which removes AV/EDR hooks in a given system DLL
  ☆62Updated 2 years ago
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆164Updated 8 months ago
• Kudaes / Dumpy
  Reuse open handles to dynamically dump LSASS.
  ☆231Updated 5 months ago
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆83Updated 8 months ago
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare.
  ☆76Updated 4 months ago
• florylsk / SignatureGate
  Weaponized HellsGate/SigFlip
  ☆188Updated last year
• Octoberfest7 / enumhandles_BOF
  ☆99Updated 2 weeks ago
• BlackSnufkin / BYOVD
  Some POCs for my BYOVD research and find some vulnerable drivers
  ☆95Updated last week
• VoldeSec / PatchlessInlineExecute-Assembly
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆143Updated last year
• klezVirus / RpcProxyInvoke
  Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar
  ☆106Updated last month
• 0xHossam / HuffLoader
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader
  ☆75Updated 6 months ago
• gatariee / ldrgen
  Template-based generation of shellcode loaders
  ☆63Updated 4 months ago
• ZERODETECTION / MSC_Dropper
  ☆119Updated last month
• praetorian-inc / goffloader
  A Go implementation of Cobalt Strike style BOF/COFF loaders.
  ☆139Updated this week
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆151Updated 8 months ago
• souzomain / Shaco
  Shaco is a linux agent for havoc
  ☆137Updated 10 months ago
• klezVirus / NimlineWhispers3
  A tool for converting SysWhispers3 syscalls for use with Nim projects
  ☆137Updated 2 years ago