ProcessusT / CobaltStrikeBypassDefender
A launcher to load a DLL with xored cobalt strike shellcode executed in memory through process hollowing technique
☆26Updated 2 years ago
Alternatives and similar repositories for CobaltStrikeBypassDefender:
Users that are interested in CobaltStrikeBypassDefender are comparing it to the libraries listed below
- Custom Python shellcode encryptor and obfuscator☆12Updated last year
- C++ Code to perform a MiniDump of lsass.exe☆34Updated last year
- ☆19Updated 2 years ago
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆24Updated 7 months ago
- Create Anti-Copy DRM Malware☆55Updated 8 months ago
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆41Updated last year
- This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…☆51Updated last year
- ☆54Updated 6 months ago
- Classic Process Injection with Memory Evasion Techniques implemantation☆69Updated last year
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Various methods of executing shellcode☆70Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated 2 years ago
- ☆36Updated 2 years ago
- A method to execute shellcode using RegisterWaitForInputIdle API.☆52Updated 2 years ago
- Do some DLL SideLoading magic☆84Updated last year
- NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…☆58Updated last year
- API Hammering with C++20☆46Updated 2 years ago
- Red Team Operation's Defense Evasion Technique.☆53Updated 10 months ago
- PowerShell script to terminate protected processes such as anti-malware and EDRs.�☆26Updated last year
- PowerShell script to generate ShellCode in various formats☆41Updated 7 months ago
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆85Updated 2 years ago
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆69Updated last year
- ☆40Updated 2 years ago
- A simple C++ Windows tool to get information about processes exposing named pipes.☆37Updated last month
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆63Updated 3 months ago
- A simple website to act as a store for havoc modules and extensions☆26Updated 3 months ago
- Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…☆38Updated this week
- MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit☆39Updated last year
- lsassdump via RtlCreateProcessReflection and NanoDump☆81Updated 6 months ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆82Updated last year