Ne0nd0g / merlin-agent
Post-exploitation agent for Merlin
☆189Updated 3 months ago
Alternatives and similar repositories for merlin-agent:
Users that are interested in merlin-agent are comparing it to the libraries listed below
- Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,.…☆195Updated 6 months ago
- Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut☆318Updated 2 years ago
- indirect syscalls for AV/EDR evasion in Go assembly☆317Updated last year
- Go shellcode loader that combines multiple evasion techniques☆359Updated last year
- Dump ntds.dit really fast☆377Updated 3 years ago
- It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)☆493Updated 2 years ago
- Various Cobalt Strike BOFs☆600Updated 2 years ago
- A C2 framework for initial access in Go☆176Updated 2 years ago
- Mythic C2 agent targeting Linux and Windows hosts written in Rust☆324Updated 3 weeks ago
- laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.☆467Updated 2 years ago
- mTLS-Encrypted Back-Connect SOCKS5 Proxy☆402Updated last year
- Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions☆480Updated 3 years ago
- eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features☆94Updated 4 months ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆320Updated 5 months ago
- XLL Phishing Tradecraft☆401Updated 2 years ago
- Golang binary for data exfiltration with ICMP protocol (+ ICMP bindshell, http over ICMP tunneling, ...)☆146Updated 3 years ago
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆348Updated last year
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆444Updated last year
- shellcode loader for your evasion needs☆307Updated 2 months ago
- Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process☆228Updated 4 years ago
- Aims to identify sleeping beacons☆525Updated last month
- FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads☆381Updated 2 years ago
- Creating a repository with all public Beacon Object Files (BoFs)☆443Updated last year
- A .NET Runtime for Cobalt Strike's Beacon Object Files☆687Updated 4 months ago
- PIC lsass dumper using cloned handles☆578Updated 2 years ago
- WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement☆361Updated 3 years ago
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆532Updated last year
- TCP Port Redirection Utility☆684Updated last year
- Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind☆430Updated last year