Cobalt-Strike / obfuscator-llvm
☆37Updated 8 months ago
Related projects: ⓘ
- ☆50Updated last year
- ☆17Updated this week
- Beacon Object Files (not Buffer Overflows)☆51Updated last year
- A VSCode plugin to assist with BOF development.☆29Updated last month
- ☆29Updated last year
- A simple BOF implementation of klist using Windows API☆30Updated 2 years ago
- Windows x64 Process Injection via Ghostwriting with Dynamic Configuration☆27Updated 2 years ago
- ☆38Updated 11 months ago
- Beacon Object File allowing creation of Beacons in different sessions.☆73Updated 2 years ago
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)☆30Updated 2 years ago
- x64 version☆30Updated 2 years ago
- HookDetection☆44Updated 3 years ago
- ☆68Updated this week
- Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…☆37Updated 4 years ago
- Sliver agent rewritten in C++☆31Updated 2 weeks ago
- ☆38Updated this week
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…☆29Updated 2 years ago
- BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆14Updated 2 years ago
- BYOVD collection☆19Updated 5 months ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 3 years ago
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process☆40Updated last year
- Artemis - C++ Hell's Gate Syscall Implementation☆31Updated last year
- ☆14Updated 2 years ago
- ☆58Updated 2 years ago
- ☆29Updated this week
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆37Updated last year
- A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation☆30Updated 5 months ago
- ☆58Updated this week
- ☆25Updated this week
- ☆20Updated 3 months ago