Ne0nd0g / merlin-agent-dll
β51Updated 6 months ago
Alternatives and similar repositories for merlin-agent-dll:
Users that are interested in merlin-agent-dll are comparing it to the libraries listed below
- A third-party Gopher Assassin for the Havoc Framework.β44Updated last year
- Simple HTTP async comms using standard GET/POST requestsβ31Updated last week
- ππͺ² Malleable C2 profiles parser and assembler written in golangβ62Updated 9 months ago
- Cobalt Strike BOF for quser.exe implementation using Windows APIβ83Updated last year
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog β¦β79Updated last year
- AutoStart teamserver and listeners with servicesβ72Updated 3 years ago
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell proβ¦β85Updated last year
- C# Port of LdapRelayScanβ79Updated 3 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX sectionβ98Updated last year
- A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally β¦β84Updated 2 years ago
- Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()β34Updated 4 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment β¦β44Updated 2 years ago
- β51Updated 2 years ago
- Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.β57Updated 2 years ago
- A simple BOF that frees UDRLsβ116Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.β74Updated 2 years ago
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.β96Updated 2 years ago
- Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDRβ98Updated 3 years ago
- β139Updated last year
- Golang reverse proxy with CobaltStrike malleable profile validation.β108Updated 2 years ago
- Unchain AMSI by patching the providerβs unmonitored memory spaceβ88Updated 2 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump inβ¦β102Updated 2 years ago
- Winsocket for Cobalt Strike.β97Updated last year
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader featureβ101Updated 2 years ago
- CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerabilityβ36Updated 2 years ago
- Titan: A generic user defined reflective DLL for Cobalt Strikeβ75Updated 2 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.β81Updated last year
- Cobalt Strike BOF Files with Nim!β84Updated 2 years ago
- Tool to start processes as SYSTEM using token duplicationβ38Updated 4 years ago
- POC tool to convert CobaltStrike BOF files to raw shellcodeβ187Updated 3 years ago