EvilBytecode / PS2BAT

Related projects ⓘ

Alternatives and complementary repositories for PS2BAT

• EvilBytecode / ThunderKitty-Ransomware
  Ransomware written in go, encrypt - decrypt.
  ☆15Updated 4 months ago
• EvilBytecode / GoEvilDocs
  Malware development in Go, learn today, anti dynamic analysis & Static & sandboxes.
  ☆10Updated 4 months ago
• EvilBytecode / SsnRetrieval
  Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…
  ☆9Updated 3 months ago
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆21Updated 4 months ago
• redskal / obfuscatxor
  Near compile-time string obfuscation for Golang
  ☆13Updated last year
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆15Updated 3 months ago
• EvilBytecode / Go-Assembly
  Examples how to use a Assm (Assembly) in a go.
  ☆14Updated 4 months ago
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆14Updated 4 months ago
• EvilBytecode / Ntdll-Unhook
  Unhook Ntdll.dll, Go & C++.
  ☆13Updated 4 months ago
• shaddy43 / AES_Shellcode_Encryptor
  This repository contains a tool that can encrypt all type of files and give the encrypted output in the form of an encrypted shellcode. P…
  ☆15Updated 2 years ago
• scriptchildie / gohellsgate
  Golang Implementation of Hell's gate
  ☆15Updated last year
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated last year
• splexas / TrampHooker
  A mechanism that trampoline hooks functions in x86/x64 systems.
  ☆20Updated last month
• EvilBytecode / Evilbytecode-Anti-VM
  Measures average CPU cycles for the CPUID instruction to detect if the code is running in a VM by comparing against a threshold.
  ☆17Updated 3 months ago
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆23Updated 4 months ago
• EvilBytecode / Evil-Go
  A malicous Golang Package
  ☆10Updated 4 months ago
• githubesson / chrome_abe_poc
  golang decryption poc of the new app bound encryption introduced in chrome version 127.
  ☆16Updated 3 weeks ago
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆41Updated 8 months ago
• AlSch092 / HideStaticReferences
  Research into removing strings & API call references at compile-time (Anti-Analysis)
  ☆24Updated 5 months ago
• Fadi002 / BlankOBF-deobfuscator
  Deobfuscator for : https://github.com/Blank-c/BlankOBF
  ☆14Updated last year
• Uri3n / Advanced-TLS-Injection
  Threadless injection via TLS callbacks
  ☆15Updated this week
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆16Updated last year
• EvilBytecode / GetSyscallStubGo
  GetSyscallStubCGo.
  ☆9Updated 3 months ago
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated last year
• jborean93 / LocalKdc
  Info on how to use Kerberos KDC on a non-domain joined host
  ☆37Updated 3 months ago
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆19Updated last year
• arsium / BypassGetModuleBaseAddressAndGetExportAddress
  A proof of concept of real custom GetProcAddress and GetModuleBaseAddress
  ☆19Updated 2 years ago
• zimnyaa / fiber-stager
  A simple Nim stager (w/ fiber execution)
  ☆16Updated 2 years ago
• sudonoodle / Aggressor-NTFY
  Cobalt Strike notifications via NTFY.
  ☆13Updated 2 months ago
• lem0nSec / ASM_World
  Offensive Assembly code snippets.
  ☆10Updated last year