Cobalt-Strike / icmp-udc2Links
UDC2 implementation that provides an ICMP C2 channel
☆46Updated this week
Alternatives and similar repositories for icmp-udc2
Users that are interested in icmp-udc2 are comparing it to the libraries listed below
Sorting:
- Cobalt Strike UDRL for memory scanner evasion.☆52Updated last year
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆57Updated 7 months ago
- ☆32Updated 10 months ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆77Updated 3 months ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Updated 9 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆62Updated last year
- Less sugar (entropy) for your binaries☆33Updated 2 months ago
- A bunch of shenanigans using functions, VEH and more☆37Updated 5 months ago
- Post-Ex BOF tooling for Hannibal☆24Updated last year
- converts sRDI compatible dlls to shellcode☆32Updated 10 months ago
- ☆48Updated 5 months ago
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆37Updated 3 months ago
- One-header configurable C++20 COFF loader☆21Updated 4 months ago
- ☆50Updated 4 months ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆70Updated 2 weeks ago
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆80Updated last month
- ☆52Updated 2 months ago
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆59Updated 5 months ago
- Shellcode Loader Utilizing ETW Events☆67Updated 9 months ago
- Proxy function calls through the thread pool with ease☆30Updated 9 months ago
- Using LNK files and user input simulation to start processes under explorer.exe☆27Updated last year
- EmbedExeLnk by x86matthew modified by d4rkiZ☆41Updated 2 years ago
- FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…☆32Updated 7 months ago
- Extensible Position Independent Code – shellcode (C/C++) development and building toolkit designed for developer experience, predictabili…☆97Updated 2 weeks ago
- ☆54Updated 5 months ago
- Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.☆79Updated last week
- A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…☆60Updated 8 months ago
- ☆100Updated 2 years ago
- ☆22Updated 9 months ago
- Shellcode capable of bypassing EAF / IAF mitigations☆26Updated 2 years ago