ELMERIKH / BerylLinks
Payload Dropper with Persistance & Privesc & UAC bypass π±βπ€
β13Updated last year
Alternatives and similar repositories for Beryl
Users that are interested in Beryl are comparing it to the libraries listed below
Sorting:
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2β13Updated 2 years ago
- Obfuscate payloads using IPv4, IPv6, MAC or UUID stringsβ22Updated last year
- Toolkit of Projects to attack and evade Event Trace for Windowsβ25Updated 3 months ago
- CVE-2021-34527 AddPrinterDriverEx() Privilege Escalationβ22Updated 3 years ago
- C# loader capable of running stage-1 from remote url, file path as well as file shareβ15Updated 2 years ago
- DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secuβ¦β44Updated last year
- Various methods of executing shellcodeβ73Updated 2 years ago
- Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsingβ¦β24Updated 7 months ago
- β49Updated last year
- π‘οΈ A multi-user malleable C2 framework targeting Windows. Written in C++ and Pythonβ45Updated last year
- Change hash for a signed peβ16Updated 2 years ago
- β17Updated 6 years ago
- A malicous Golang Packageβ15Updated 7 months ago
- Just another Process Injection using Process Hollowing technique.β19Updated 2 years ago
- Classic Process Injection with Memory Evasion Techniques implemantationβ72Updated 2 years ago
- UAC bypass abusing WinSxS in "wusa.exe". Referred from and similar to: https://github.com/L3cr0f/DccwBypassUAC , Kudos to L3cr0f and Fuzβ¦β33Updated 4 years ago
- β11Updated 2 years ago
- An issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe componentβ11Updated 2 years ago
- Thats it! An Open-Source Windows UEFI Rootkitβ27Updated 4 months ago
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system cβ¦β27Updated last year
- web based c2 π΄ββ οΈβ15Updated last year
- This project is an EDRSandblast fork, adding some features and custom pieces of code.β24Updated 2 years ago
- How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.β25Updated 7 months ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.β10Updated 4 years ago
- Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming anβ¦β33Updated 2 years ago
- π§ C# UAC Bypass technique using mock directories π§β28Updated 3 years ago
- Classic DLL injection. Download dll from url and inject. Simple C++ implementationβ10Updated 3 years ago
- Simple PoC to locate hooked functions by EDR in ntdll.dllβ44Updated 2 years ago
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process holβ¦β70Updated last year
- A stealthy C++ shellcode loader using anti-analysis checks, AES-256 decryption, and dynamic memory permissions to evade detection. Includβ¦β20Updated 8 months ago