S3N4T0R-0X0 / Malicious-PixelCodeLinks
Malicious PixelCode is a security research project that demonstrates a covert technique for encoding executable files into pixel data and storing them inside images or videos. A lightweight loader retrieves the media file, reconstructs the original binary and executes it in memory. This project highlights unconventional data delivery.
☆95Updated last month
Alternatives and similar repositories for Malicious-PixelCode
Users that are interested in Malicious-PixelCode are comparing it to the libraries listed below
Sorting:
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated 2 years ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …☆111Updated this week
- ☆155Updated 8 months ago
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆162Updated 2 months ago
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆122Updated 6 months ago
- ☆59Updated last year
- Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…☆113Updated last month
- PowerShell script to generate ShellCode in various formats☆46Updated last year
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆42Updated last year
- Dump processes over WMI with MSFT_MTProcess☆81Updated 3 months ago
- This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion☆90Updated 4 months ago
- ☆94Updated 11 months ago
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆76Updated last year
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆58Updated 8 months ago
- New 0 day vulnerability allowing to leak NTLM hashes from browsers with one click☆183Updated last month
- Inject RDPThief into memory with PowerShell.☆65Updated 11 months ago
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆47Updated 4 months ago
- Permanently disable EDRs as local admin☆123Updated 2 weeks ago
- ☆86Updated 7 months ago
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆150Updated 10 months ago
- POC for CVE-2024-3183 (FreeIPA Rosting)☆26Updated last year
- (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.☆129Updated 4 months ago
- ☆57Updated 10 months ago
- This tool exploits Golden DMSA attack against delegated Managed Service Accounts.☆89Updated 5 months ago
- An impacket-lite cli tool that combines many useful impacket functions using a single session.☆57Updated 3 months ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆100Updated 8 months ago
- A GUI wrapper inside of Havoc to interact with bloodhound CE☆70Updated last year
- Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit☆62Updated 8 months ago
- Automatically scan the file system to identify Electron applications vulnerable to ASAR tampering.☆145Updated last month
- SpicyAD is a C# Active Directory penetration testing tool designed for authorized security assessments. It combines multiple AD attack te…☆94Updated 2 weeks ago