Idov31 / NidhoggCSharpApiView external linksLinks
C# API for Nidhogg rootkit
☆21Apr 25, 2024Updated last year
Alternatives and similar repositories for NidhoggCSharpApi
Users that are interested in NidhoggCSharpApi are comparing it to the libraries listed below
Sorting:
- A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation☆38Dec 7, 2025Updated 2 months ago
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 2 years ago
- A Simple PoC☆22May 24, 2024Updated last year
- Loads a native Windows assembly... right from your .NET embedded resources. Works on all modern .NET platforms.☆49Jun 13, 2025Updated 8 months ago
- Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD☆28Jan 4, 2024Updated 2 years ago
- Three different shellcode techniques on the Windows Kernel☆15Apr 8, 2025Updated 10 months ago
- A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.☆10Dec 16, 2021Updated 4 years ago
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆13Jul 14, 2022Updated 3 years ago
- Windows Service with the implementation of the Process hollowing technique to run shellcode☆14Jul 20, 2023Updated 2 years ago
- exp for useful vuln☆12Jul 9, 2021Updated 4 years ago
- Released presentations of my talks + code that used during these talks☆15Sep 5, 2024Updated last year
- A work in progress BOF/COFF loader in Rust☆50Mar 22, 2023Updated 2 years ago
- A small shellcode loader library written in C#☆48Dec 21, 2021Updated 4 years ago
- ☆16May 29, 2024Updated last year
- CVE-2021-22205 检测��脚本,支持getshell和命令执行☆12Jul 25, 2022Updated 3 years ago
- Interactive program for loading AES encrypted shellcode with Dynamic Invocation, and interactive .NET assemblies in memory.☆13Mar 16, 2022Updated 3 years ago
- Looks for a vulnerable entry point to bypass BE Anti Cheat or other in Ring3☆18Feb 25, 2023Updated 2 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆32Aug 12, 2022Updated 3 years ago
- PoC script to demonstrate collection of SCCM attack paths that can be viewed in BH with OpenGraph☆24Aug 2, 2025Updated 6 months ago
- A C# Tool to gather information about email breaches☆16Dec 21, 2023Updated 2 years ago
- Weaponizing CLRvoyance for Post-Ex .NET Execution☆38Jul 15, 2021Updated 4 years ago
- Patches the AmsiScan function in clr.dll allowing for unrestricted assembly loading in .NET☆50May 5, 2025Updated 9 months ago
- Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE☆66May 1, 2023Updated 2 years ago
- Small handy tool for crafting shellcodes by hand.☆18Apr 20, 2022Updated 3 years ago
- PoC for detecting and evading ETW detection of .Net Assembly.Load☆21Aug 26, 2020Updated 5 years ago
- MappingInjection via csharp☆40Nov 19, 2021Updated 4 years ago
- Local & remote Windows DLL Proxying☆170Jun 17, 2024Updated last year
- Simple and sane compression wrapper library.☆19Oct 28, 2022Updated 3 years ago
- Hides processes from the windows task manager using IAT hooking.☆22Mar 30, 2021Updated 4 years ago
- ☆20Jul 23, 2023Updated 2 years ago
- ☆44Oct 9, 2023Updated 2 years ago
- XDNR is a X0R Cryptor along with DEC/N0T/R0R encoder plus random byte insertion encoder, that generates null free encrypted and encoded s…☆17Jul 12, 2022Updated 3 years ago
- Bypass Cloudflare human verification 绕过Cloudflare真人检测☆20Jul 12, 2024Updated last year
- This project is created for research into antivirus evasion by unhooking.☆18Sep 2, 2021Updated 4 years ago
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- Change hash for a signed pe☆17Jul 18, 2023Updated 2 years ago
- Load Encrypted Dll Using LoadLibraryA, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.☆23Sep 5, 2021Updated 4 years ago
- Red Team Stuffs☆19Jul 7, 2022Updated 3 years ago
- ☆18Nov 23, 2023Updated 2 years ago