FourCoreLabs / wintokenLinks
Mainpulate, Steal and Modify Windows Tokens in Go
☆74Updated 2 years ago
Alternatives and similar repositories for wintoken
Users that are interested in wintoken are comparing it to the libraries listed below
Sorting:
- Fork of pkg/debug that adds some additional functionality.☆126Updated last year
- Process injection techniques written in Go.☆62Updated last year
- eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features☆100Updated 9 months ago
- This project will guide yout to awareness of injection in almost every window API and process.☆25Updated 3 years ago
- The DCE/RPC / MS-RPC Codegen/Client for Go☆97Updated 2 months ago
- A PoC package for hosting the CLR and executing .NET from Go☆74Updated 11 months ago
- Single executable reverse SOCKS5 proxy written in Golang.☆137Updated 5 months ago
- Universal Shared Library User-space Loader☆228Updated 3 years ago
- Indirect Syscall with TartarusGate Approach in Go☆121Updated 6 months ago
- A client library to interact with Windows RPC services such as MS-SRVS and MS-RRP.☆64Updated 2 weeks ago
- Cross-platform proxy selection with optional native authentication negotiation☆50Updated 2 years ago
- Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs☆83Updated 2 years ago
- 🔎🪲 Malleable C2 profiles parser and assembler written in golang☆66Updated last year
- Golang C2 Server and Agents using XMT (https://github.com/iDigitalFlame/xmt)☆35Updated 7 months ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.☆225Updated 4 months ago
- Process Injection Techniques with Golang☆79Updated 5 years ago
- Go interface to NTDLL functions☆77Updated last year
- Python tool to resolve all strings in Go binaries obfuscated by garble☆107Updated 4 months ago
- Speedy probe-based UDP service scanner☆88Updated last week
- Caddy v2 module to filter requests based on C2 profiles☆14Updated 2 months ago
- A PoC package for hosting the CLR and executing .NET from Go☆223Updated 2 years ago
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆91Updated 2 years ago
- indirect syscalls for AV/EDR evasion in Go assembly☆330Updated 2 years ago
- Reflectively load PE☆103Updated 4 years ago
- Command and Control (C2) framework☆127Updated last month
- Load and execute a common object file format (COFF) in the current process☆30Updated last year
- A Python gRPC Client Library for Sliver☆69Updated 2 months ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆117Updated 2 years ago
- ☆248Updated 2 years ago
- A tunneling toolkit enabling operators to move data from one place to another evasively.☆61Updated 2 weeks ago