S12cybersecurity / PDFTypeSpoofingLinks
PDF Icon File Type Spoofer
☆16Updated last year
Alternatives and similar repositories for PDFTypeSpoofing
Users that are interested in PDFTypeSpoofing are comparing it to the libraries listed below
Sorting:
- Classic Process Injection with Memory Evasion Techniques implemantation☆70Updated last year
- Winsocket for Cobalt Strike.☆99Updated 2 years ago
- Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …☆85Updated 2 years ago
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution☆48Updated last year
- Improved version of EKKO by @5pider that Encrypts only Image Sections☆121Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated 2 years ago
- Terminate AV/EDR leveraging BYOVD attack☆89Updated 4 months ago
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆70Updated last year
- Rat Inject is C++ Executable to gain Undetectable Persistence in Windows via 4 Registry Keys☆31Updated 2 years ago
- This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for loc…☆51Updated 2 years ago
- Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement☆65Updated 3 years ago
- How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.☆21Updated 3 months ago
- Encode shellcode into dictionary words for evasion and entropy reduction☆27Updated 9 months ago
- C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)☆57Updated 2 years ago
- User Mode Windows Rootkit☆65Updated last year
- NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…☆60Updated 2 years ago
- Indirect NT syscalls LSASS dumper.☆46Updated 2 years ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆42Updated 2 years ago
- ☆124Updated last year
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆79Updated 2 years ago
- CompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive☆107Updated 2 years ago
- ProcExp Driver (Ab)use☆22Updated 2 years ago
- Transparently call NTAPI via Halo's Gate with indirect syscalls.☆12Updated last year
- DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…☆42Updated last year
- Modified versions of the Cobalt Strike Process Injection Kit☆98Updated last year
- C# havoc implant☆101Updated 2 years ago
- Null-free shellcode for TCP reverse shell on Windows x64☆57Updated last year
- UAC Bypass via CMUACUtil & PEB Enumeration, Undetected for now.☆49Updated last year
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆84Updated 2 years ago
- ☆73Updated last year