A launcher to load a DLL with xored cobalt strike shellcode executed in memory through process hollowing technique
☆27Nov 11, 2022Updated 3 years ago
Alternatives and similar repositories for CobaltStrikeBypassDefender
Users that are interested in CobaltStrikeBypassDefender are comparing it to the libraries listed below
Sorting:
- Python script for extracting and decrypting Group Policy Preferences passwords☆26May 28, 2021Updated 4 years ago
- Un dropper de payload indétectable qui désactive l'antivirus Windows Defender puis paramètre un fichier batch à l'ouverture de session de…☆13Mar 6, 2021Updated 5 years ago
- VULNSPY regularly retrieves the latest alerts published by the CERT-FR and the related vulnerabilities with their CVSS score and allows y…☆38Nov 3, 2022Updated 3 years ago
- ☆16Oct 2, 2024Updated last year
- ☆15May 30, 2025Updated 9 months ago
- Windows notifier tool that detects suspicious connections by monitoring ETW event logs☆124Dec 8, 2022Updated 3 years ago
- Parses Cobalt Strike malleable C2 profiles.☆61Updated this week
- ☆49Dec 21, 2025Updated 3 months ago
- Interactive program for loading AES encrypted shellcode with Dynamic Invocation, and interactive .NET assemblies in memory.☆13Mar 16, 2022Updated 4 years ago
- Used to AES encrypt shellcode, can take password or use built in default should be used with Iron Injector to generate and execute shellc…☆15Mar 18, 2022Updated 4 years ago
- ☆11Feb 12, 2023Updated 3 years ago
- XXST-白加黑辅助挖掘工具,全程静默运行不影响正常使用☆17Apr 12, 2024Updated last year
- Section Mapping Process Injection modified with SysWhisper2 (sw2-secinject): Cobalt Strike BOF☆44Jun 23, 2022Updated 3 years ago
- 黑魔鬼插件☆19Jan 30, 2021Updated 5 years ago
- Retrieve and display information about active user sessions on remote computers. No admin privileges required.☆207Aug 12, 2024Updated last year
- Combined and sorted cybersecurity collection of all high quality seclists and wordlists from the internet☆23May 1, 2025Updated 10 months ago
- Indirect Syscall invocation via thread hijacking☆26May 5, 2023Updated 2 years ago
- ☆48Dec 5, 2025Updated 3 months ago
- 浏览器数据清除脚本,可以检查浏览器中有没有存储特定网址的密码,然后实行数据的清除,主要是用于攻防演练中蓝队防止钓鱼获取浏览器密码。☆18Jul 8, 2024Updated last year
- dcsync bof☆46Feb 13, 2026Updated last month
- Sliver agents for Mythic☆48Nov 18, 2024Updated last year
- A simple polymorphic engine☆21Jun 5, 2020Updated 5 years ago
- KeePass 2.X dumper (CVE-2023-32784)☆27Nov 4, 2023Updated 2 years ago
- NTFSx is a tool for extracting files from an NTFS filesystem that are otherwise inaccessible.☆14Jul 26, 2013Updated 12 years ago
- Weaponize signed .NET ClickOnce applications for initial access by hijacking a dependency DLL via AppDomainManager injection and loading …☆144Feb 14, 2026Updated last month
- Beacon Object File (BOF) for identifying dependent child services of a given parent.☆19Jun 20, 2025Updated 9 months ago
- kASLR bypass technique on Intel CPUs.☆32May 18, 2025Updated 10 months ago
- shellcode loader for your evasion needs☆350Apr 30, 2025Updated 10 months ago
- Petit tuto sur la sanitization en php.☆13Sep 17, 2017Updated 8 years ago
- ☆14Mar 30, 2022Updated 3 years ago
- Anteater is Reconnaissance tool for discovering interesting files and folders in a web application that most likely has been misconfigure…☆13Jun 12, 2024Updated last year
- replace the shellcode chatacters so that reduce the entropy☆18Sep 14, 2023Updated 2 years ago
- jsfind burp插件版☆18May 27, 2022Updated 3 years ago
- Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all D…☆527Jul 31, 2024Updated last year
- ☆13Jun 26, 2021Updated 4 years ago
- ☆16Jul 5, 2017Updated 8 years ago
- A slightly more fun way to disable windows defender☆52May 4, 2025Updated 10 months ago
- Cross-platform SOCKS5 proxy server program/library written in C that can also reverse itself over a firewall.☆31Aug 8, 2022Updated 3 years ago
- i will upload all the books that helped me in learning in this repo☆21Jan 6, 2023Updated 3 years ago