S12cybersecurity / RDPCredentialStealer
RDPCredentialStealer it's a malware that steal credentials provided by users in RDP using API Hooking with Detours in C++
☆245Updated last year
Alternatives and similar repositories for RDPCredentialStealer:
Users that are interested in RDPCredentialStealer are comparing it to the libraries listed below
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆405Updated 10 months ago
- A shellcode injection tool showcasing various process injection techniques☆135Updated last year
- yet another AV killer tool using BYOVD☆270Updated last year
- AV bypass while you sip your Chai!☆220Updated 11 months ago
- 🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.☆156Updated last year
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆151Updated 11 months ago
- Kill AV/EDR leveraging BYOVD attack☆352Updated last year
- Bypass Malware Sandbox Evasion Ram check☆137Updated 2 years ago
- Evasive Golang Loader☆131Updated 8 months ago
- Terminate AV/EDR Processes using kernel driver☆341Updated last year
- ✉️ HTML Smuggling generator&obfuscator for your Red Team operations☆162Updated last year
- 「🛡️」AVs/EDRs Evasion tool☆97Updated 4 months ago
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.☆301Updated last year
- Reverse shell that can bypass windows defender detection☆163Updated last year
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆198Updated 10 months ago
- Amsi Bypass payload that works on Windwos 11☆377Updated last year
- ☆103Updated 7 months ago
- C# AV/EDR Killer using less-known driver (BYOVD)☆175Updated last year
- Generate Shellcode Loaders & Injects☆155Updated last year
- 「💀」Proof of concept on BYOVD attack☆158Updated 4 months ago
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver☆268Updated last month
- Execute shellcode files with rundll32☆198Updated last year
- WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.☆266Updated 2 months ago
- Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8☆349Updated 7 months ago
- A keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing i…☆386Updated last year
- Documents Exfiltration project for fun and educational purposes☆145Updated last year
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆254Updated 8 months ago
- A collection of Cobalt Strike Aggressor scripts.☆94Updated 3 years ago
- All my Source Codes (Repos) for Red-Teaming & Pentesting + Blue Teaming☆229Updated 6 months ago
- ☆170Updated 5 months ago