Alternatives and similar repositories for eop24-26229

Users that are interested in eop24-26229 are comparing it to the libraries listed below

• d4rkiZ / EmbedExeLnk-
  EmbedExeLnk by x86matthew modified by d4rkiZ
  ☆41Updated 2 years ago
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆83Updated last year
• fin3ss3g0d / IoDllProxyLoad
  DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
  ☆62Updated last year
• WKL-Sec / StackMask
  A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.
  ☆65Updated 2 years ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆50Updated 10 months ago
• outflanknl / seccomp-notify-injection
  Linux Process Injection via Seccomp Notifier
  ☆71Updated last week
• Teach2Breach / phantom_persist_rs
  Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence
  ☆62Updated 5 months ago
• lap1nou / CLR_Heap_encryption
  ☆100Updated 2 years ago
• wolfcod / beacondbg
  Beacon Debugger
  ☆55Updated last year
• nickvourd / SugarFree
  Less sugar (entropy) for your binaries
  ☆34Updated 3 months ago
• Meowmycks / etwunhook
  Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.
  ☆50Updated last year
• safedv / Rustic64Shell
  A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.
  ☆85Updated 7 months ago
• kr0tt / EarlyExceptionHandling
  Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH
  ☆133Updated 3 months ago
• Offensive-Panda / D3MPSEC
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆27Updated last year
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆83Updated last year
• deh00ni / NtDumpBOF
  ☆99Updated last year
• MEhrn00 / boflink
  Linker for Beacon Object Files
  ☆134Updated 3 weeks ago
• zero2504 / FrostLock-Injection
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆41Updated 8 months ago
• Kudaes / CustomEntryPoint
  Select any exported function in a dll as the new dll's entry point.
  ☆81Updated last year
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆64Updated last year
• entropy-z / PostEx-Arsenal
  Arsenal of modules to beacon postex formats like BOF/Shellcode including: dotnet in memory execution, lateral moviment (scm, winrm, dcom,…
  ☆87Updated 3 weeks ago
• rasta-mouse / Crystal-Loaders
  A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike
  ☆178Updated last month
• logangoins / BadTakeover-BOF
  Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover
  ☆83Updated 2 months ago
• itaymigdal / PartyLoader
  Threadless shellcode injection tool
  ☆67Updated last year
• internetangel / ZeroCrumb
  Dumping App Bound Protected Credentials & Cookies Without Privileges.
  ☆163Updated 6 months ago
• NUL0x4C / HookingLsassForCredentials
  Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials
  ☆61Updated 7 months ago
• Mav3rick33 / ZenLdr
  Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature
  ☆102Updated 2 years ago
• passthehashbrowns / VectoredExceptionHandling
  ☆98Updated last year
• MaorSabag / interactive-execute-shellcode
  A simple PoC of injection shellcode into a remote process and get the output using namepipe
  ☆44Updated last year
• ScriptIdiot / sleepmask_PatchlessHook
  Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
  ☆85Updated 2 years ago