EvilBytecode / RubyRedOpsLinks
💎 | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Ruby
☆10Updated 3 months ago
Alternatives and similar repositories for RubyRedOps
Users that are interested in RubyRedOps are comparing it to the libraries listed below
Sorting:
- Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks☆113Updated 7 months ago
- C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…☆126Updated this week
- A fucking real shellcode loader with a GUI. Work-in-Progress.☆75Updated last month
- Threadless shellcode injection tool☆66Updated last year
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆127Updated 3 months ago
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.☆38Updated 2 months ago
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion☆88Updated last month
- A Mythic agent for Windows written in C☆131Updated 2 weeks ago
- This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.☆75Updated 3 months ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆186Updated 6 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆76Updated 11 months ago
- Construct the payload at runtime using an array of offsets☆63Updated last year
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆39Updated 8 months ago
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆106Updated 3 weeks ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆91Updated last year
- Shellcode loader☆91Updated 8 months ago
- Reflective shellcode loaderwith advanced call stack spoofing and .NET support.☆191Updated last month
- BOF with Synthetic Stackframe☆158Updated 5 months ago
- converts sRDI compatible dlls to shellcode☆30Updated 6 months ago
- Ransomware written in go, encrypt - decrypt.☆26Updated 3 months ago
- The projects im more confident in while learning Malware Development☆10Updated last month
- ☆124Updated 11 months ago
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆63Updated last year
- ☆116Updated 6 months ago
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆135Updated last week
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆100Updated 4 months ago
- Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…☆12Updated 3 months ago
- Sleep obfuscation☆230Updated 7 months ago
- A mutliple tactics to execute shellcode in go :}☆21Updated 3 months ago
- Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to ne…☆21Updated 2 months ago