EvanMcBroom / sleepyView external linksLinks
A lexer and parser for Sleep
☆20May 14, 2025Updated 9 months ago
Alternatives and similar repositories for sleepy
Users that are interested in sleepy are comparing it to the libraries listed below
Sorting:
- Parser and reconciliation tooling for large Active Directory environments.☆33Feb 18, 2025Updated 11 months ago
- Internal Monologue BOF☆79Dec 28, 2024Updated last year
- Linker for Beacon Object Files☆149Feb 8, 2026Updated last week
- SACL Scanner is a tool designed to scan and analyze SACLs.☆50Feb 13, 2025Updated last year
- A simple BOF that disables some logging with NtSetInformationProcess☆13Oct 13, 2023Updated 2 years ago
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆184Oct 29, 2025Updated 3 months ago
- ☆42Feb 18, 2025Updated 11 months ago
- Files for http://blog.deniable.org/posts/windows-callbacks/☆12Jan 1, 2023Updated 3 years ago
- Rainbow table generation & lookup tools.☆30Dec 17, 2025Updated last month
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆156Mar 26, 2025Updated 10 months ago
- ☆50May 4, 2025Updated 9 months ago
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- ☆126Sep 1, 2024Updated last year
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆19Jun 24, 2021Updated 4 years ago
- ☆164Dec 30, 2022Updated 3 years ago
- ☆20Nov 8, 2020Updated 5 years ago
- Dump Teams conversations☆19Jun 9, 2021Updated 4 years ago
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆78Aug 25, 2025Updated 5 months ago
- A simple Nim stager (w/ fiber execution)☆20Jan 31, 2022Updated 4 years ago
- A PoC for adding NtContinue to CFG allowed list in order to make Ekko work in a CFG protected process☆113Aug 29, 2022Updated 3 years ago
- BOF with Synthetic Stackframe☆220Oct 30, 2025Updated 3 months ago
- MIPS VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator.☆124Dec 6, 2024Updated last year
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆73Apr 13, 2025Updated 10 months ago
- Utilizng an MCP Server to communicate with your C2☆86May 15, 2025Updated 9 months ago
- ☆137Nov 17, 2025Updated 2 months ago
- Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute☆25Jun 5, 2024Updated last year
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- ☆38Oct 12, 2020Updated 5 years ago
- An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD☆49Mar 10, 2025Updated 11 months ago
- ☆24Feb 1, 2025Updated last year
- shell code example☆67Dec 12, 2025Updated 2 months ago
- WinDbg plugin to trace module transitions from a debugged driver.☆40Dec 22, 2025Updated last month
- ☆83Nov 1, 2023Updated 2 years ago
- ☆100Oct 7, 2023Updated 2 years ago
- Call Stack Spoofing for Rust☆210Jan 28, 2026Updated 2 weeks ago
- BOF to decrypt Signal Desktop chat logs☆71Feb 20, 2025Updated 11 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆75May 1, 2024Updated last year
- adws enumeration bof☆162Oct 2, 2025Updated 4 months ago