ELMERIKH / Beryl
Payload Dropper with Persistance & Privesc & UAC bypass π±βπ€
β13Updated 11 months ago
Alternatives and similar repositories for Beryl:
Users that are interested in Beryl are comparing it to the libraries listed below
- An issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe componentβ11Updated last year
- Abusing autoElevate - Fully Undetectable UAC Bypass exploitβ11Updated 2 years ago
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system cβ¦β24Updated 6 months ago
- CVE-2021-34527 AddPrinterDriverEx() Privilege Escalationβ21Updated 2 years ago
- Parent Process ID Spoofing, coded in CGo.β22Updated 9 months ago
- C# loader capable of running stage-1 from remote url, file path as well as file shareβ17Updated 2 years ago
- web based c2 π΄ββ οΈβ13Updated 7 months ago
- Custom Python shellcode encryptor and obfuscatorβ12Updated 11 months ago
- Find kernel32 base and API addresses. Simple C++ implementationβ24Updated 2 years ago
- Beacon Object Files used for Cobalt Strikeβ17Updated last year
- AV engines evasion for C++ simple malware part 1 source codeβ12Updated 2 years ago
- Threadless injection via TLS callbacksβ16Updated 4 months ago
- Used to AES encrypt shellcode, can take password or use built in default should be used with Iron Injector to generate and execute shellcβ¦β15Updated 3 years ago
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004β30Updated last year
- Dump Linux keyringsβ17Updated 8 months ago
- Quickly generate every payload type for each listener and optionally host via HTTP.β21Updated 3 years ago
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permissionβ¦β15Updated 4 months ago
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.β19Updated 8 months ago
- This project is a Python script that exploits the CVE-2023-24489 vulnerability in ShareFile. It allows remote command execution on the taβ¦β13Updated last year
- Cobalt Strike Aggressor script create for RTOβ14Updated 11 months ago
- Just another casual shellcode native loaderβ24Updated 3 years ago
- Malware development in Go, learn today, anti dynamic analysis & Static & sandboxes.β11Updated 9 months ago
- A simple website to act as a store for havoc modules and extensionsβ25Updated 2 months ago
- Cobalt Strike notifications via NTFY.β13Updated 6 months ago
- β18Updated 5 months ago
- A console obfuscator for .NET assemblies.β10Updated 2 years ago
- Just another Process Injection using Process Hollowing technique.β16Updated last year
- LSTAR - CobaltStrike Translated to ENβ13Updated last year
- My Own VirtualAlloc Implementation to use as alternative unknown for all the defense solutions of VirtualAlloc Win32 API Functionβ8Updated last year
- β18Updated 2 years ago