C5Hackr / ARM64_AmsiPatch
☆13Updated last month
Alternatives and similar repositories for ARM64_AmsiPatch:
Users that are interested in ARM64_AmsiPatch are comparing it to the libraries listed below
- A simple rpc2socks alternative in pure Go.☆28Updated 8 months ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- ☆17Updated 3 months ago
- Golang Implementation of Hell's gate☆17Updated last year
- Extension functionality for the NightHawk operator client☆27Updated last year
- Cobalt Strike notifications via NTFY.☆13Updated 6 months ago
- Create PDFs with HTML smuggling attachments that save on opening the document.☆29Updated last year
- Python3 tool to perform password spraying using RDP☆16Updated last year
- Example of using Sleep to create better named pipes.☆41Updated last year
- Nemesis agent for Mythic☆27Updated 7 months ago
- ☆19Updated 4 months ago
- BOF for C2 framework☆40Updated 4 months ago
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…☆15Updated 4 months ago
- an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code☆18Updated last month
- The Totally Legit Authentication Dialog☆12Updated last year
- Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.☆14Updated last year
- DFSCoerce exe revisited version with custom authentication☆38Updated last year
- Parent Process ID Spoofing, coded in CGo.☆22Updated 9 months ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- A simple website to act as a store for havoc modules and extensions☆25Updated 2 months ago
- A tool to enumerate and download files from the System Center Configuration Manager (SCCM) SMB share (SCCMContentLib)☆12Updated 8 months ago
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆41Updated 8 months ago
- Smuggle a file to a user's browser☆19Updated 2 years ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆20Updated last year
- string encryption in Nim☆17Updated 9 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆31Updated 10 months ago
- .NET port of Leron Gray's azbelt tool.☆26Updated last year
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆25Updated 2 months ago
- Unix Process hollowing in rust☆21Updated 3 months ago