HavocFramework / TalonLinks
(Demo) 3rd party agent for Havoc
☆145Updated 2 years ago
Alternatives and similar repositories for Talon
Users that are interested in Talon are comparing it to the libraries listed below
Sorting:
- Patching AmsiOpenSession by forcing an error branching☆148Updated 2 years ago
- Your syscall factory☆125Updated last month
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆147Updated 3 years ago
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆125Updated 3 years ago
- Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctype…☆123Updated 2 years ago
- ☆194Updated last year
- Nim Payload Generation☆61Updated 2 years ago
- ☆245Updated 2 years ago
- ☆166Updated 2 years ago
- Infect Shared Files In Memory for Lateral Movement☆195Updated 2 years ago
- POC for frustrating/defeating Malware Analysts☆157Updated 3 years ago
- C# havoc implant☆101Updated 2 years ago
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆145Updated last year
- C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.☆110Updated 2 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆117Updated 2 years ago
- ☆170Updated last year
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆149Updated 2 years ago
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆101Updated 3 years ago
- Start with shellcode execution using Windows APIs (high level), move on to native APIs (medium level) and finally to direct syscalls (low…☆143Updated 2 years ago
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆160Updated last year
- ☆122Updated 2 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆87Updated last year
- ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…☆170Updated 2 years ago
- A BOF to automate common persistence tasks for red teamers☆289Updated 2 years ago
- Shaco is a linux agent for havoc☆167Updated 2 years ago
- Generate Shellcode Loaders & Injects☆156Updated 2 years ago
- different ntdll unhooking techniques : unhooking ntdll from disk, from KnownDlls, from suspended process, from remote server (fileless)☆194Updated 2 years ago
- ☆222Updated 2 years ago
- Havoc C2 profile generator☆97Updated 3 months ago
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2☆189Updated 3 years ago