Enelg52 / Backpack
Golang packer that use process hollowing
ā17Updated 2 years ago
Alternatives and similar repositories for Backpack:
Users that are interested in Backpack are comparing it to the libraries listed below
- Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.ā43Updated last year
- ššŖ² Malleable C2 profiles parser and assembler written in golangā62Updated 10 months ago
- Shellcode implementation of Reflective DLL Injection by Golang. Convert DLLs to position independent shellcodeā58Updated 3 years ago
- Preventing 3rd Party DLLs from Injecting into your Malwareā25Updated 3 years ago
- A PoC package for hosting the CLR and executing .NET from Goā69Updated 8 months ago
- Golang implementation of @CCob's C# ThreadlessInjectā32Updated 10 months ago
- Proof of concept SMB C2 using named pipes in Golangā25Updated 5 years ago
- Reflective DLL injection Executionā19Updated 2 years ago
- CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callbackā68Updated 2 years ago
- Simple PoCs for utilizing Windows syscalls in Goā16Updated 4 years ago
- Without closing windows defender, to make defender useless by removing its token privileges and lowering the token integrity.ā33Updated 3 years ago
- (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dllā43Updated 3 years ago
- DLL Exports Extraction BOF with optional NTFS transactions.ā81Updated 3 years ago
- Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified processā42Updated 2 years ago
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built iā¦ā33Updated 3 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader featureā101Updated 2 years ago
- Thanks to @d35haā13Updated 3 years ago
- A third-party Gopher Assassin for the Havoc Framework.ā44Updated last year
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected processā43Updated last year
- Fork of Wireguard's Memmodā16Updated 2 years ago
- Windows C++ Implant for Exploration C2ā28Updated 3 weeks ago
- ā39Updated last year
- Indirect NT syscalls LSASS dumper.ā43Updated last year
- It stinksā101Updated 2 years ago
- ā47Updated 2 years ago
- A Cobalt Strike memory evasion loader for redteamersā98Updated 2 years ago
- A basic C2 framework written in Cā59Updated 8 months ago
- Core Submodule of Exploration C2ā15Updated last week
- Etwti-UnhookPOC just for testā11Updated 2 years ago
- The Web UI for Antniumā26Updated 2 years ago