EvilBytecode / RubyRedOpsLinks
π | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Ruby
β10Updated 6 months ago
Alternatives and similar repositories for RubyRedOps
Users that are interested in RubyRedOps are comparing it to the libraries listed below
Sorting:
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.β45Updated 5 months ago
- A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsassβ158Updated last month
- A mutliple tactics to execute shellcode in go :}β23Updated 6 months ago
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dllβ131Updated 6 months ago
- C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, pβ¦β157Updated 3 weeks ago
- Early Bird Cryo Injections β APC-based DLL & Shellcode Injection via Pre-Frozen Job Objectsβ121Updated 6 months ago
- γβ οΈγPerforming a BYOVD on the truesight.sys driverβ44Updated 10 months ago
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpointsβ114Updated 3 months ago
- Threadless shellcode injection toolβ67Updated last year
- Good CLR Host with Native patchless AMSI Bypassβ95Updated 6 months ago
- Proof of Concepts code for Bring Your Own Vulnerable Driver techniquesβ79Updated 2 months ago
- Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooksβ128Updated 10 months ago
- Shellcode loaderβ94Updated 11 months ago
- Pattern-based AMSI bypass that patches AMSI.dll in memory by modifying comparison values, conditional jumps, and function prologues to neβ¦β24Updated 5 months ago
- A fucking real shellcode loader with a GUI. Work-in-Progress.β80Updated 4 months ago
- BOF with Synthetic Stackframeβ175Updated 8 months ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)β190Updated 8 months ago
- A Mythic agent for Windows written in Cβ137Updated 2 weeks ago
- Generate an Alphabetical Polymorphic Shellcodeβ130Updated 2 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.β84Updated last year
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentialsβ60Updated 5 months ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.β94Updated last year
- Classic Process Injection with Memory Evasion Techniques implemantationβ73Updated 2 years ago
- β51Updated 2 weeks ago
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasionβ95Updated 3 months ago
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible iβ¦β53Updated 6 months ago
- Modern PIC implant for Windows (64 & 32 bit)β104Updated 3 months ago
- This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.β85Updated 6 months ago
- Reflective shellcode loaderwith advanced call stack spoofing and .NET support.β219Updated last month
- converts sRDI compatible dlls to shellcodeβ32Updated 9 months ago