CBLabresearch / ClematisLinks
PE to shellcode
☆210Updated 5 months ago
Alternatives and similar repositories for Clematis
Users that are interested in Clematis are comparing it to the libraries listed below
Sorting:
- beta☆116Updated 8 months ago
- Next Generation C2 Framework☆301Updated this week
- not a reverse-engineered version of the Cobalt Strike Beacon☆363Updated last year
- C2 redirector base on caddy☆204Updated last year
- Resolve the issue of DLLmain function in white and black DLLs hanging when calling shellcode☆158Updated last year
- IoM implant, C2 Framework and Infrastructure☆175Updated 3 weeks ago
- Take a screenshot without injection for Cobalt Strike☆190Updated last year
- A Tool that aims to evade av with binary padding☆151Updated 11 months ago
- AdaptixFramework Extension Kit☆126Updated last week
- Binary Hollowing☆76Updated 8 months ago
- ☆95Updated last year
- Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do☆372Updated 2 years ago
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆314Updated last year
- 使用 rust 实现 CobaltStrike 的 beacon || Using Rust to implement CobaltStrike's Beacon☆130Updated 3 months ago
- Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.☆185Updated 2 years ago
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆262Updated last month
- ☆241Updated last year
- A Windows potato to privesc☆370Updated 9 months ago
- Process injection alternative☆330Updated 8 months ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆239Updated 11 months ago
- GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…☆320Updated 8 months ago
- Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…☆72Updated last year
- Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution☆180Updated last week
- A beacon object file implementation of PoolParty Process Injection Technique.☆394Updated last year
- 关于RPC一些绕EDR的tips☆185Updated 2 years ago
- WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler☆120Updated 6 months ago
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver☆274Updated last month
- Some Service DCOM Object and SeImpersonatePrivilege abuse.☆361Updated 2 years ago
- Open repository for learning dynamic shellcode loading (sample in many programming languages)☆248Updated 4 months ago
- Alternative Shellcode Execution Via Callbacks Rewrite In C#☆88Updated 2 years ago