Helixo32 / NimReflectiveLoaderLinks
NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.
☆30Updated last year
Alternatives and similar repositories for NimReflectiveLoader
Users that are interested in NimReflectiveLoader are comparing it to the libraries listed below
Sorting:
- Indirect syscalls + DInvoke made simple.☆94Updated 9 months ago
- malware written for educational purposes☆67Updated 11 months ago
- Sleep obfuscation for shellcode implants and their reflective shit☆52Updated 2 years ago
- PoC XLL builder in Python/Nim☆47Updated 2 years ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆81Updated 7 months ago
- Automated .NET AppDomain hijack payload generation☆127Updated 8 months ago
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆40Updated 10 months ago
- in-process powershell runner for BRC4☆47Updated last year
- ☆57Updated 7 months ago
- Sniffing files generator☆59Updated 7 months ago
- Situational Awareness script to identify how and where to run implants☆67Updated 10 months ago
- ☆58Updated 11 months ago
- Beacon Object Files (BOF) for Cobalt Strike.☆32Updated last year
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆37Updated 5 months ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆42Updated last year
- Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.☆85Updated 3 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆91Updated last year
- TokenCert☆100Updated 10 months ago
- Cortex EDR Ransomware protection Bypass☆25Updated 8 months ago
- ☆47Updated 2 years ago
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆51Updated 4 months ago
- DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.☆98Updated 2 years ago
- ☆109Updated 7 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated last year
- BOF for C2 framework☆43Updated 11 months ago
- ☆48Updated 2 years ago
- malleable profile generator GUI for Havoc☆55Updated 2 years ago
- ☆51Updated 11 months ago
- Tool to obtain hash using MS-SNTP for user accounts☆27Updated 8 months ago
- Internal Monologue BOF☆74Updated 9 months ago