GetRektBoy724 / SharpLoadLibrary

Related projects: ⓘ

• jsecu / ElevatedEvents
  ☆29Updated last year
• zimawhit3 / DynimicGhostWriting
  Windows x64 Process Injection via Ghostwriting with Dynamic Configuration
  ☆27Updated 2 years ago
• GetRektBoy724 / SysGate
  One gate to all syscalls!
  ☆23Updated 2 years ago
• Allevon412 / BreadManModuleStomping
  ☆38Updated 11 months ago
• CUHKJason / BOF-klist
  A simple BOF implementation of klist using Windows API
  ☆30Updated 2 years ago
• ASkyeye / CobaltPatch
  Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…
  ☆37Updated 4 years ago
• D1rkMtr / SSN_Resolver
  ☆29Updated this week
• ScriptIdiot / sleepmask_ekko_cfg
  Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process
  ☆40Updated last year
• ShellBind / G0T-B0R3D
  ☆17Updated this week
• paranoidninja / DotNetTracer
  C code to enable ETW tracing for Dotnet Assemblies
  ☆28Updated 2 years ago
• D1rkMtr / AmsiScanBuffer
  ☆38Updated this week
• Kudaes / Scripts
  Repository for dirty scripts and PoCs
  ☆16Updated last year
• TomOS3 / UserModeUnhooking
  This project is created for research into antivirus evasion by unhooking.
  ☆15Updated 3 years ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆92Updated 3 years ago
• Gr1mmie / SharpShellCodeObfus
  Caeser Cipher your shellcode!
  ☆20Updated 2 years ago
• OtterHacker / CoffLoader
  ☆48Updated last year
• thiagomayllart / DarkMelkor
  Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.
  ☆27Updated 3 years ago
• realoriginal / krbdump
  A way to extract tickets in case I need to purge and restore tickets on the fly.
  ☆15Updated 4 months ago
• Allevon412 / ClassicAPIUnhooking
  ☆14Updated 2 years ago
• zimnyaa / PhaseDive
  Sleep Obfuscation
  ☆39Updated last year
• purplededa / CVE-2022-44721-CsFalconUninstaller
  ☆25Updated this week
• D1rkMtr / UUIDRegistryShellcode
  ☆39Updated this week
• D1rkMtr / ADSrunner
  ☆22Updated this week
• GetRektBoy724 / SharpHalos
  My implementation of Halo's Gate technique in C#
  ☆51Updated 2 years ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 2 years ago
• timwhitez / JmpUnhook
  Ntdll Unhooking POC
  ☆19Updated 2 years ago
• trainr3kt / Readfile_BoF
  ☆18Updated 2 years ago
• ZephrFish / DynamicMSBuilder
  A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation
  ☆30Updated 5 months ago
• xpn / ObjectOverloadingPOC
  ☆58Updated 2 years ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆30Updated 6 months ago