PowerShell script to generate "proxy" counterparts to easily perform DLL Sideloading
☆131Jul 24, 2019Updated 6 years ago
Alternatives and similar repositories for DLLSideloader
Users that are interested in DLLSideloader are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆101Oct 13, 2022Updated 3 years ago
- Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading☆911Jul 21, 2020Updated 5 years ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆467Mar 8, 2023Updated 3 years ago
- FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads☆385Apr 16, 2022Updated 4 years ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,176Jun 10, 2024Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆507Dec 19, 2023Updated 2 years ago
- all random stuff that dont warrant a seperate repo☆12Sep 2, 2022Updated 3 years ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆410Jan 11, 2026Updated 5 months ago
- PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.☆624Sep 26, 2023Updated 2 years ago
- You shall pass☆269Jul 16, 2022Updated 3 years ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆1,416Nov 22, 2023Updated 2 years ago
- Replace the .txt section of the current loaded modules from \KnownDlls\☆306Sep 28, 2022Updated 3 years ago
- Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind☆491Jul 12, 2023Updated 2 years ago
- Situational Awareness commands implemented using Beacon Object Files☆1,825Mar 10, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- New lateral movement technique by abusing Windows Perception Simulation Service to achieve DLL hijacking code execution.☆302Feb 23, 2022Updated 4 years ago
- Cobalt Strike UDRL for memory scanner evasion.☆1,020Jun 4, 2024Updated 2 years ago
- TartarusGate, Bypassing EDRs☆665Jan 25, 2022Updated 4 years ago
- Silence EDRs by removing kernel callbacks☆238Dec 7, 2020Updated 5 years ago
- DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.☆323Sep 23, 2022Updated 3 years ago
- Remote operations commands implemented using Beacon Object Files☆1,168Mar 5, 2026Updated 4 months ago
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)☆301Sep 28, 2021Updated 4 years ago
- Encrypted shellcode Injection to avoid Kernel triggered memory scans☆426Sep 12, 2023Updated 2 years ago
- MS-FSRVP coercion abuse PoC☆302Dec 30, 2021Updated 4 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Building and Executing Position Independent Shellcode from Object Files in Memory☆172Jan 30, 2021Updated 5 years ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆258Jul 7, 2022Updated 4 years ago
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆148Jun 2, 2022Updated 4 years ago
- Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll☆511Feb 3, 2022Updated 4 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆1,171Mar 31, 2021Updated 5 years ago
- Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.☆171Jan 25, 2024Updated 2 years ago
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆186Dec 5, 2022Updated 3 years ago
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆86Jan 6, 2023Updated 3 years ago
- A step-by-step walkthrough of how to write a Client and a Driver to communicate with each other and boost the priority of a thread.☆18Dec 12, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Scripts for public use that we've randomly written, or have updated from other people's work.☆40Jun 25, 2024Updated 2 years ago
- A PoC implementation for dynamically masking call stacks with timers.☆313Feb 13, 2023Updated 3 years ago
- Basic interactive Windows kernel offensive toolkit written in C☆137Sep 20, 2025Updated 9 months ago
- WIP shellcode loader in nim with EDR evasion techniques☆218Mar 30, 2022Updated 4 years ago
- A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.☆460Mar 25, 2024Updated 2 years ago
- Threadless Process Injection using remote function hooking.☆819Sep 4, 2024Updated last year
- Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts wa…☆1,086Oct 14, 2025Updated 8 months ago