A C Implementation for using a new method to invoke undetectable indirect syscalls
☆20Dec 2, 2025Updated 3 months ago
Alternatives and similar repositories for GalaxyGate
Users that are interested in GalaxyGate are comparing it to the libraries listed below
Sorting:
- A C implementation for a stealth injection method☆38Jan 30, 2026Updated last month
- A BOF to create a scheduled task using a COM object.☆16Dec 3, 2024Updated last year
- This is a library for stealing browser passwords, crypto stuff, password manager extension stuff, and just general applications too☆11May 10, 2024Updated last year
- go实现windows计划任务管理,过杀软☆13Aug 26, 2021Updated 4 years ago
- Basic multi platform meterpreter loader module.☆16Jul 21, 2020Updated 5 years ago
- CobaltStrike Team Server批量暴力破解脚本☆12Apr 9, 2021Updated 4 years ago
- A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure …☆19Mar 6, 2025Updated 11 months ago
- query specific user and login IP from remote machine☆18Nov 19, 2022Updated 3 years ago
- 重构Beacon☆15Aug 25, 2024Updated last year
- a tiny code that performs kernel-mode read/write using CVE-2023-38817.☆18Mar 28, 2025Updated 11 months ago
- Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass☆115Jan 29, 2026Updated last month
- impersonate trustedinstaller by fiddling with tokens☆17Aug 30, 2021Updated 4 years ago
- ☆15Nov 19, 2023Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray☆47Mar 4, 2023Updated 3 years ago
- CSharp Writeups for HackSys Extreme Vulnerable Driver☆45Dec 22, 2021Updated 4 years ago
- Simple .NET loader for loading and executing Powershell payloads☆17Nov 5, 2021Updated 4 years ago
- Submission, compilation and execution of C# code snippets, using an unmanaged CLR Host☆53Jan 29, 2015Updated 11 years ago
- Detect VirtualBox, SandBox, Emulator, Debugger, Hosting, Processes in C#☆20Jun 23, 2020Updated 5 years ago
- Self Cleanup in post-ex job☆59Sep 10, 2024Updated last year
- 复现《EDR的梦魇:Storm-0978使用新型内核注入技术“Step Bear”》☆161Oct 27, 2024Updated last year
- A Simple PoC☆22May 24, 2024Updated last year
- Linux Shared Library to Shellcode Loader☆84Feb 15, 2026Updated 2 weeks ago
- Encrypt embedded go files using age.☆49Oct 21, 2021Updated 4 years ago
- Blog/Journal on how to backdoor VSCode extensions☆76Feb 24, 2026Updated last week
- golang 实现 sqlmap☆27Apr 5, 2021Updated 4 years ago
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆325Apr 12, 2024Updated last year
- This project is move advanced version of https://github.com/WKL-Sec/HiddenDesktop☆50Jan 11, 2026Updated last month
- Append custom data to signed pe file and DONOT DESTROY SIGNED STATUS.☆26Mar 13, 2021Updated 4 years ago
- Things i do because i saw it on twitter on a weekend☆57Jul 20, 2025Updated 7 months ago
- Its a coff loader ported to go( Modified by TimWhite )☆26Jul 17, 2023Updated 2 years ago
- A Reflective Loader for macOS☆147Jul 20, 2025Updated 7 months ago
- An In-memory Embedding of CPython☆31May 24, 2021Updated 4 years ago
- Load and execute a common object file format (COFF) in the current process☆32Mar 9, 2024Updated last year
- AV/EDR killer using BYOVD technique☆44Sep 27, 2024Updated last year
- A small tool I made to dump the export table of PE files. The primary use case was intended for use within DLL proxying.☆71Aug 16, 2022Updated 3 years ago
- Use hardware breakpoints to spoof the call stack for both syscalls and API calls☆203Jun 6, 2024Updated last year
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.☆72Mar 6, 2024Updated last year
- Golang implementation of @CCob's C# ThreadlessInject☆31May 11, 2024Updated last year
- Repo for developing the endpoint package☆29Updated this week