Iterate over Windows Handles
☆15Nov 18, 2025Updated 4 months ago
Alternatives and similar repositories for go-handle
Users that are interested in go-handle are comparing it to the libraries listed below
Sorting:
- impersonate trustedinstaller by fiddling with tokens☆17Aug 30, 2021Updated 4 years ago
- Preventing 3rd Party DLLs from Injecting into your Malware☆25Aug 31, 2021Updated 4 years ago
- dump lsass☆37May 24, 2022Updated 3 years ago
- Phantom DLL Hollowing method implemented in modmap☆18Jun 9, 2021Updated 4 years ago
- About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once☆13Jul 14, 2022Updated 3 years ago
- DPX - the Doge Packer for eXecutables☆30Dec 21, 2021Updated 4 years ago
- A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.☆10Dec 16, 2021Updated 4 years ago
- post exploitation user monitoring tool☆20Jul 3, 2018Updated 7 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Sep 30, 2022Updated 3 years ago
- OwOwning with the Windows API Examples and Code. DEFCON Furs 2020 presentation.☆13Jan 18, 2024Updated 2 years ago
- Small utility package for manipulating Windows process tokens☆26Apr 26, 2022Updated 3 years ago
- An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.☆55Mar 3, 2022Updated 4 years ago
- A third-party Gopher Assassin for the Havoc Framework.☆44Jan 1, 2024Updated 2 years ago
- Defense Evasion & Bypass AntiVirus reference☆74Mar 28, 2021Updated 4 years ago
- A SigFlip implement in golang☆51Jan 5, 2022Updated 4 years ago
- ☆82Dec 24, 2021Updated 4 years ago
- A minimalistic LDAP server that is meant for test vulnerability to JNDI+LDAP injection attacks in Java, especially CVE-2021-44228.☆11Dec 13, 2021Updated 4 years ago
- Golang implementation of @CCob's C# ThreadlessInject☆31May 11, 2024Updated last year
- Rust Weaponization for Red Team Engagements.☆15Oct 9, 2021Updated 4 years ago
- Fork of ligolo-ng with exec and service capability☆17Oct 30, 2023Updated 2 years ago
- Like Hell's Gate but more EGG :)☆20Mar 11, 2022Updated 4 years ago
- crypto args for golang☆17Feb 14, 2022Updated 4 years ago
- Reflective DLL injection Execution☆20Sep 9, 2022Updated 3 years ago
- tp3注入总结☆19Jan 6, 2022Updated 4 years ago
- Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;☆34Mar 22, 2022Updated 4 years ago
- 杂 物 收 纳☆15Aug 4, 2023Updated 2 years ago
- Golang implementation of Reflective load PE from memory☆64Jan 10, 2022Updated 4 years ago
- ☆17Oct 13, 2025Updated 5 months ago
- bypass UAC even when configured to always notify user☆29Aug 31, 2021Updated 4 years ago
- A work in progress of constructing a minimal http(s) beacon for Cobalt Strike.☆27Apr 28, 2022Updated 3 years ago
- Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.☆117Dec 26, 2021Updated 4 years ago
- A spin-off research project. Cobalt Strike x Notion collab 2022☆53Apr 8, 2022Updated 3 years ago
- ☆32Jul 2, 2020Updated 5 years ago
- redteam Build platform☆19Nov 13, 2023Updated 2 years ago
- Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…☆25Mar 26, 2020Updated 5 years ago
- 基于gf框架的token验证插件☆11Sep 1, 2025Updated 6 months ago
- CS http Dynamic Encrypt Bridge.☆47Nov 12, 2021Updated 4 years ago
- ☆50Dec 15, 2025Updated 3 months ago
- Bake shellcode to get malicious.exe☆27Jul 25, 2023Updated 2 years ago