GeorgePatsias / PayloadFactory
C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.
☆34Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for PayloadFactory
- An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.☆53Updated 2 years ago
- One gate to all syscalls!☆23Updated 2 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆30Updated 8 months ago
- Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets☆48Updated 3 years ago
- Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…☆37Updated 4 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 3 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆53Updated 2 years ago
- ☆29Updated 2 years ago
- Core bypass Windows Defender and execute any binary converted to shellcode☆43Updated 3 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆28Updated 2 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆26Updated 4 years ago
- A repository filled with ideas to break/detect direct syscall techniques☆26Updated 2 years ago
- Small POC for process ghosting☆38Updated 2 years ago
- Example of async client/server sockets in .NET 5☆15Updated 3 years ago
- Cobalt Strike Get clipboard plugin☆12Updated last year
- Parses logs created by Cobalt Strike and creates an SQLite DB which can be used to create custom reports.☆13Updated this week
- Extended Process List (Search functionality)☆27Updated 3 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆30Updated 5 years ago
- Run PowerShell command without invoking powershell.exe☆35Updated 2 years ago
- A repo to hold any bypasses I work on/study/whatever☆18Updated 3 years ago
- Using syscall to load shellcode, Evasion techniques☆26Updated 3 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆26Updated 3 years ago