MythicAgents / thanatos
Mythic C2 agent targeting Linux and Windows hosts written in Rust
☆332Updated 3 months ago
Alternatives and similar repositories for thanatos:
Users that are interested in thanatos are comparing it to the libraries listed below
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆323Updated 8 months ago
- laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.☆469Updated 2 years ago
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆359Updated last year
- A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…☆633Updated 2 years ago
- Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework☆374Updated 7 months ago
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆572Updated 8 months ago
- Apply a divide and conquer approach to bypass EDRs☆279Updated last year
- Creating a repository with all public Beacon Object Files (BoFs)☆464Updated last year
- Various Cobalt Strike BOFs☆619Updated 2 years ago
- Aims to identify sleeping beacons☆570Updated 3 months ago
- Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!☆440Updated 2 years ago
- shellcode loader for your evasion needs☆317Updated 4 months ago
- A .NET Runtime for Cobalt Strike's Beacon Object Files☆702Updated 6 months ago
- Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists☆423Updated last year
- PIC lsass dumper using cloned handles☆580Updated 2 years ago
- The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).☆227Updated 3 months ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆452Updated 2 years ago
- TartarusGate, Bypassing EDRs☆570Updated 3 years ago
- Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.☆266Updated 7 months ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 2 years ago
- FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads☆383Updated 2 years ago
- Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…☆453Updated 3 years ago
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆648Updated last year
- XLL Phishing Tradecraft☆413Updated 2 years ago
- Various ways to execute shellcode☆487Updated last year
- A .NET Framework 4.0 Windows Agent☆467Updated last week
- ☆323Updated last year
- Useful C2 techniques and cheatsheets learned from engagements☆478Updated last week
- Convert shellcode into different formats!☆349Updated 2 years ago
- Nim-based assembly packer and shellcode loader for opsec & profit☆467Updated 2 years ago