POC for frustrating/defeating Malware Analysts
☆155Jun 12, 2022Updated 4 years ago
Alternatives and similar repositories for BeatRev
Users that are interested in BeatRev are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- BOF combination of KillDefender and Backstab☆167Mar 23, 2023Updated 3 years ago
- Writeup of Payload Techniques in C involving Mutants, Session 1 -> Session 0 migration, and Self-Deletion of payloads.☆129Apr 24, 2022Updated 4 years ago
- XLL Phishing Tradecraft☆442May 24, 2022Updated 4 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆84May 23, 2022Updated 4 years ago
- Beacon Object File implementation of Event Viewer deserialization UAC bypass☆132May 6, 2022Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementin…☆538Aug 1, 2022Updated 3 years ago
- Project Ares is a Proof of Concept (PoC) loader written in C/C++ based on the Transacted Hollowing technique☆336Jan 16, 2022Updated 4 years ago
- Hookers are cooler than patches.☆171Jan 21, 2022Updated 4 years ago
- ☆128Jun 28, 2023Updated 3 years ago
- Process Ghosting in C#☆221Jan 24, 2022Updated 4 years ago
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆86Jan 6, 2023Updated 3 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆57Feb 2, 2026Updated 4 months ago
- Beacon Object File PoC implementation of KillDefender☆236Apr 12, 2022Updated 4 years ago
- C# havoc implant☆101Feb 12, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Implant drop-in for EDR testing☆147Nov 15, 2023Updated 2 years ago
- UAC bypass by abusing RPC and debug objects.☆632Oct 19, 2023Updated 2 years ago
- A simple BOF that frees UDRLs☆123May 29, 2022Updated 4 years ago
- Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes☆109Mar 8, 2023Updated 3 years ago
- A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…☆673Dec 23, 2022Updated 3 years ago
- UUID based Shellcode loader for your favorite C2☆86Dec 8, 2021Updated 4 years ago
- A shellcode function to encrypt a running process image when sleeping.☆340Sep 11, 2021Updated 4 years ago
- Bypass Malware Time Delays☆106Sep 23, 2022Updated 3 years ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆87Mar 22, 2023Updated 3 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- DLL Exports Extraction BOF with optional NTFS transactions.☆92Nov 5, 2021Updated 4 years ago
- Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind☆491Jul 12, 2023Updated 2 years ago
- Section Mapping Process Injection (secinject): Cobalt Strike BOF☆104Jan 7, 2022Updated 4 years ago
- It stinks☆102Apr 22, 2022Updated 4 years ago
- Windows Local Privilege Escalation via CdpSvc service (Writeable SYSTEM path Dll Hijacking)☆257Sep 15, 2022Updated 3 years ago
- A BOF to automate common persistence tasks for red teamers☆299Mar 7, 2023Updated 3 years ago
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆88Jun 24, 2022Updated 4 years ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆141Sep 12, 2022Updated 3 years ago
- KaynLdr is a Reflective Loader written in C/ASM☆554Dec 3, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Collection of extracted Microsoft Defender data for security research purposes☆238Jun 23, 2022Updated 4 years ago
- LdrLoadDll Unhooking☆132Jan 16, 2022Updated 4 years ago
- CobaltWhispers is an aggressor script that utilizes a collection of Beacon Object Files (BOF) for Cobalt Strike to perform process inject…☆241Jan 4, 2023Updated 3 years ago
- WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement☆372Dec 24, 2021Updated 4 years ago
- Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.☆316Jul 8, 2022Updated 3 years ago
- You shall pass☆270Jul 16, 2022Updated 3 years ago
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking☆288Jun 8, 2023Updated 3 years ago