Ne0nd0g / go-clrLinks
A PoC package for hosting the CLR and executing .NET from Go
☆74Updated 11 months ago
Alternatives and similar repositories for go-clr
Users that are interested in go-clr are comparing it to the libraries listed below
Sorting:
- 🔎🪲 Malleable C2 profiles parser and assembler written in golang☆66Updated last year
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.☆112Updated 4 years ago
- Beacon Object File (BOF) Template☆51Updated 7 months ago
- Golang implementation of @CCob's C# ThreadlessInject☆32Updated last year
- Golang evasion tool, execute-assembly .Net file☆97Updated 3 years ago
- Go implementation of the Heaven's Gate technique☆98Updated 4 years ago
- ☆142Updated 2 years ago
- A simple BOF that frees UDRLs☆120Updated 3 years ago
- AV/EDR evasion via direct system calls.☆108Updated last year
- Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.☆58Updated last year
- A .NET Runtime for Cobalt Strike's Beacon Object Files☆72Updated 8 months ago
- A third-party Gopher Assassin for the Havoc Framework.☆44Updated last year
- Preventing 3rd Party DLLs from Injecting into your Malware☆25Updated 3 years ago
- Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs☆126Updated 3 years ago
- Little program written in C# to bypass EDR hooks and dump the content of the lsass process☆61Updated 4 years ago
- CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback☆69Updated 2 years ago
- Reflectively load PE☆103Updated 4 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆80Updated 3 years ago
- ☆81Updated last year
- Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified process☆45Updated 3 years ago
- Sliver agent rewritten in C++☆44Updated 9 months ago
- Extracts TEXT section of a PE, ELF, or Mach-O executable to shellcode☆104Updated 2 years ago
- Savoir is a tool to perform tasks during internal security assessment☆19Updated 2 years ago
- This project will guide yout to awareness of injection in almost every window API and process.☆25Updated 3 years ago
- It stinks☆102Updated 3 years ago
- Golng version of SharpDump that can be used to extract LSASS or any other proces. Provides token elevation prior to creating dump of high…☆21Updated 4 years ago
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.☆39Updated last year
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)☆32Updated 3 years ago
- golang implementation of Syswhisper2/Syswhisper3☆23Updated 3 years ago
- Simple PoCs for utilizing Windows syscalls in Go☆16Updated 4 years ago