ChaitanyaHaritash / Callback_Shellcode_Injection

Related projects ⓘ

Alternatives and complementary repositories for Callback_Shellcode_Injection

• mai1zhi2 / SysWhispers2_x86
  X86 version of syswhispers2 / x86 direct system call
  ☆320Updated 3 years ago
• antonioCoco / MalSeclogon
  A little tool to play with the Seclogon service
  ☆305Updated 2 years ago
• anthemtotheego / InlineExecute-Assembly
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆610Updated last year
• ajpc500 / BOFs
  Collection of Beacon Object Files
  ☆553Updated 2 years ago
• codewhitesec / HandleKatz
  PIC lsass dumper using cloned handles
  ☆573Updated 2 years ago
• boku7 / AsmHalosGate
  x64 Assembly HalosGate direct System Caller to evade EDR UserLand hooks
  ☆193Updated last year
• zcgonvh / TaskSchedulerMisc
  Misc TaskScheduler Plays
  ☆224Updated 2 years ago
• trickster0 / TartarusGate
  TartarusGate, Bypassing EDRs
  ☆534Updated 2 years ago
• knight0x07 / ImpulsiveDLLHijack
  C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…
  ☆496Updated 3 years ago
• lawiet47 / STFUEDR
  Silence EDRs by removing kernel callbacks
  ☆223Updated 3 years ago
• capt-meelo / laZzzy
  laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
  ☆461Updated last year
• mgeeky / UnhookMe
  UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red …
  ☆341Updated 2 years ago
• joshfaust / Alaris
  A protective and Low Level Shellcode Loader that defeats modern EDR systems.
  ☆889Updated 8 months ago
• timwhitez / Doge-Gabh
  GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…
  ☆301Updated 2 months ago
• CCob / BOF.NET
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆680Updated 2 months ago
• med0x2e / ExecuteAssembly
  Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…
  ☆545Updated 3 years ago
• D4stiny / ForkPlayground
  An implementation and proof-of-concept of Process Forking.
  ☆218Updated 2 years ago
• dtmsecurity / bof_helper
  Beacon Object File (BOF) Creation Helper
  ☆221Updated 2 years ago
• ctxis / DLLHSC
  DLLHSC - DLL Hijack SCanner a tool to assist with the discovery of suitable candidates for DLL Hijacking
  ☆140Updated 4 years ago
• outflanknl / InlineWhispers
  Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)
  ☆308Updated 3 years ago
• nettitude / RunPE
  C# Reflective loader for unmanaged binaries.
  ☆419Updated last year
• mgeeky / ElusiveMice
  Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind
  ☆423Updated last year
• boku7 / HOLLOW
  EarlyBird process hollowing technique (BOF) - Spawns a process in a suspended state, inject shellcode, hijack main thread with APC, and e…
  ☆265Updated last year
• securifybv / Visual-Studio-BOF-template
  A Visual Studio template used to create Cobalt Strike BOFs
  ☆282Updated 3 years ago
• zcgonvh / DCOMPotato
  Some Service DCOM Object and SeImpersonatePrivilege abuse.
  ☆350Updated last year
• gabriellandau / PPLFault
  ☆506Updated 9 months ago
• kyleavery / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆881Updated 5 months ago
• kyxiaxiang / Beacon_Source
  not a reverse-engineered version of the Cobalt Strike Beacon
  ☆336Updated 7 months ago
• trustedsec / COFFLoader
  ☆472Updated 3 weeks ago
• AzAgarampur / byeintegrity8-uac
  Bypass UAC at any level by abusing the Program Compatibility Assistant with RPC, WDI, and more Windows components
  ☆256Updated 3 years ago