REDMED-X / InjectKit
Modified versions of the Cobalt Strike Process Injection Kit
☆92Updated last year
Alternatives and similar repositories for InjectKit:
Users that are interested in InjectKit are comparing it to the libraries listed below
- ☆78Updated last year
- ☆93Updated 5 months ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆82Updated last year
- Tool to bypass LSA Protection (aka Protected Process Light)☆44Updated last month
- A care package of useful bofs for red team engagments☆54Updated 2 months ago
- Click Once + App Domain☆62Updated last year
- Library of BOFs to interact with SQL servers☆158Updated 2 months ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆61Updated last month
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆73Updated last month
- ☆123Updated last year
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆76Updated last year
- ☆52Updated last month
- ☆138Updated last year
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆149Updated last year
- Lateral Movement via the .NET Profiler☆79Updated 2 months ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆76Updated 4 months ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated last year
- SharpElevator is a C# implementation of Elevator for UAC bypass. This UAC bypass was originally discovered by James Forshaw and publishe…☆51Updated 2 years ago
- Beacon Object Files (not Buffer Overflows)☆53Updated last year
- I have documented all of the AMSI patches that I learned till now☆74Updated last year
- CVE-2024-40711-exp☆38Updated 4 months ago
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.☆39Updated last year
- DLL Exports Extraction BOF with optional NTFS transactions.☆81Updated 3 years ago
- ☆63Updated last year
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆68Updated 9 months ago
- ProcExp Driver (Ab)use☆20Updated 2 years ago
- ☆61Updated 2 years ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆31Updated last year