Helixo32 / NimReflectiveLoaderLinks
NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.
☆28Updated last year
Alternatives and similar repositories for NimReflectiveLoader
Users that are interested in NimReflectiveLoader are comparing it to the libraries listed below
Sorting:
- in-process powershell runner for BRC4☆45Updated last year
- ☆55Updated 8 months ago
- ☆48Updated 2 years ago
- PoC XLL builder in Python/Nim☆46Updated 2 years ago
- A pure C version of SymProcAddress☆27Updated last year
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆38Updated 11 months ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated last year
- malware written for educational purposes☆66Updated 7 months ago
- Indirect syscalls + DInvoke made simple.☆91Updated 6 months ago
- ☆48Updated 2 years ago
- Tool to obtain hash using MS-SNTP for user accounts☆24Updated 5 months ago
- Sleep obfuscation for shellcode implants and their reflective shit☆51Updated last year
- Creation and removal of Defender path exclusions and exceptions in C#.☆31Updated last year
- BOF for C2 framework☆41Updated 7 months ago
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆50Updated 5 months ago
- Brief writeup of post exploitation methodologies.☆18Updated last year
- Sample Rust Hooking Engine☆36Updated last year
- ☆56Updated 4 months ago
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe☆13Updated last year
- Detect userland hooks placed by AV/EDR☆27Updated last year
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆43Updated last month
- FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…☆25Updated 2 months ago
- Windows Thread Pool Injection Havoc Implementation☆30Updated last year
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆37Updated 6 months ago
- ☆29Updated last year
- .NET port of Leron Gray's azbelt tool.☆26Updated last year
- Proxy function calls through the thread pool with ease☆28Updated 3 months ago
- ☆34Updated 2 months ago
- Sniffing files generator☆58Updated 4 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆32Updated 2 months ago