PowerShell script to generate "proxy" counterparts to easily perform DLL Sideloading
☆131Jul 24, 2019Updated 6 years ago
Alternatives and similar repositories for DLLSideloader
Users that are interested in DLLSideloader are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆101Oct 13, 2022Updated 3 years ago
- Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading☆908Jul 21, 2020Updated 5 years ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆468Mar 8, 2023Updated 3 years ago
- FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads☆385Apr 16, 2022Updated 4 years ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,162Jun 10, 2024Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆506Dec 19, 2023Updated 2 years ago
- all random stuff that dont warrant a seperate repo☆12Sep 2, 2022Updated 3 years ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆411Jan 11, 2026Updated 5 months ago
- PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.☆624Sep 26, 2023Updated 2 years ago
- You shall pass☆270Jul 16, 2022Updated 3 years ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆1,413Nov 22, 2023Updated 2 years ago
- Replace the .txt section of the current loaded modules from \KnownDlls\☆306Sep 28, 2022Updated 3 years ago
- Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind☆489Jul 12, 2023Updated 2 years ago
- Situational Awareness commands implemented using Beacon Object Files☆1,816Mar 10, 2026Updated 3 months ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- New lateral movement technique by abusing Windows Perception Simulation Service to achieve DLL hijacking code execution.☆302Feb 23, 2022Updated 4 years ago
- Cobalt Strike UDRL for memory scanner evasion.☆1,018Jun 4, 2024Updated 2 years ago
- TartarusGate, Bypassing EDRs☆661Jan 25, 2022Updated 4 years ago
- DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.☆323Sep 23, 2022Updated 3 years ago
- Silence EDRs by removing kernel callbacks☆240Dec 7, 2020Updated 5 years ago
- Remote operations commands implemented using Beacon Object Files☆1,166Mar 5, 2026Updated 3 months ago
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)☆301Sep 28, 2021Updated 4 years ago
- Encrypted shellcode Injection to avoid Kernel triggered memory scans☆421Sep 12, 2023Updated 2 years ago
- MS-FSRVP coercion abuse PoC☆302Dec 30, 2021Updated 4 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Building and Executing Position Independent Shellcode from Object Files in Memory☆172Jan 30, 2021Updated 5 years ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆259Jul 7, 2022Updated 3 years ago
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆148Jun 2, 2022Updated 4 years ago
- Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll☆509Feb 3, 2022Updated 4 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆1,168Mar 31, 2021Updated 5 years ago
- Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.☆171Jan 25, 2024Updated 2 years ago
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆186Dec 5, 2022Updated 3 years ago
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆86Jan 6, 2023Updated 3 years ago
- A step-by-step walkthrough of how to write a Client and a Driver to communicate with each other and boost the priority of a thread.☆18Dec 12, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Scripts for public use that we've randomly written, or have updated from other people's work.☆40Jun 25, 2024Updated last year
- A PoC implementation for dynamically masking call stacks with timers.☆311Feb 13, 2023Updated 3 years ago
- Basic interactive Windows kernel offensive toolkit written in C☆138Sep 20, 2025Updated 8 months ago
- WIP shellcode loader in nim with EDR evasion techniques☆218Mar 30, 2022Updated 4 years ago
- A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.☆460Mar 25, 2024Updated 2 years ago
- Threadless Process Injection using remote function hooking.☆819Sep 4, 2024Updated last year
- Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts wa…☆1,079Oct 14, 2025Updated 8 months ago