Nariod / ronflex
Attempts to suspend all known AV/EDRs processes on Windows using syscalls and the undocumented NtSuspendProcess API. Made with <3 for pentesters. Written in Rust.
☆13Updated last year
Alternatives and similar repositories for ronflex:
Users that are interested in ronflex are comparing it to the libraries listed below
- Create PDFs with HTML smuggling attachments that save on opening the document.☆29Updated last year
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- Event Tracing for Windows EDR bypass in Rust (usermode)☆19Updated 10 months ago
- ☆17Updated 6 months ago
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆38Updated 2 years ago
- A collection of source code, binaries, and compilation scripts designed to bypass detection��☆25Updated 2 years ago
- Custom Python shellcode encryptor and obfuscator☆12Updated last year
- Firefox webInjector capable of injecting codes into webpages using a mitmproxy.☆40Updated 2 years ago
- These are the slide decks and source code for Brute Ratel Seminar conducted on 24th August 2023. The youtube video for the seminar can be…☆19Updated last year
- ☆34Updated 3 weeks ago
- ☆59Updated last year
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆26Updated 2 years ago
- A simple website to act as a store for havoc modules and extensions☆26Updated 3 months ago
- A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…☆25Updated last year
- ☆18Updated 6 months ago
- ☆19Updated 4 months ago
- Rust Implementation of SharpDllProxy for DLL Proxying Technique☆30Updated 2 years ago
- in-process powershell runner for BRC4☆45Updated last year
- A collection of random small Aggressor snippets that don't warrant their own repo☆23Updated 2 years ago
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆20Updated last year
- ShootCutMe an .LNK file creator tool for redteamer☆13Updated 6 months ago
- Collection of Rust repos useful for Red Teamers.☆32Updated 2 years ago
- Reverse-HTTP Redirector via DigitalOcean Apps Platform☆31Updated last year
- load dumped csharp binaries as assemblies and launch them in memory☆26Updated last year
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆20Updated last year
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated 2 years ago
- Modified version of Impacket to use dynamic NTLMv2 Challenge/Response☆18Updated 2 years ago
- A .NET 4.8 application to retrieve delivr.to emails from Microsoft Outlook via COM☆19Updated 10 months ago
- Beacon Object Files used for Cobalt Strike☆18Updated last year