S3N4T0R-0X0 / Malicious-PixelCodeLinks
Malicious PixelCode is a security research project that demonstrates a covert technique for encoding executable files into pixel data and storing them inside images or videos. A lightweight loader retrieves the media file, reconstructs the original binary and executes it in memory. This project highlights unconventional data delivery.
☆127Updated 2 months ago
Alternatives and similar repositories for Malicious-PixelCode
Users that are interested in Malicious-PixelCode are comparing it to the libraries listed below
Sorting:
- New 0 day vulnerability allowing to leak NTLM hashes from browsers with one click☆202Updated 2 months ago
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆121Updated 7 months ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …☆147Updated 3 weeks ago
- ☆158Updated 8 months ago
- Inject RDPThief into memory with PowerShell.☆65Updated last year
- Convert your shellcode into an ASCII string☆124Updated 7 months ago
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆163Updated 2 months ago
- Permanently disable EDRs as local admin☆125Updated last month
- PowerShell script to generate ShellCode in various formats☆46Updated last year
- Our Tips&Tricks☆128Updated 11 months ago
- Remote DLL Injection with Timer-based Shellcode Execution☆152Updated 6 months ago
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆46Updated 5 months ago
- Automatically scan the file system to identify Electron applications vulnerable to ASAR tampering.☆148Updated 2 months ago
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆103Updated 2 years ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆86Updated 10 months ago
- PoC that downloads an executable from a public SSL certificate☆135Updated 6 months ago
- (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.☆131Updated 4 months ago
- Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph☆64Updated this week
- A tool to easily perform GitHub Device Code Phishing on red team engagements☆76Updated last month
- Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit☆62Updated 8 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆161Updated 3 months ago
- Enumerate active EDR's on the system☆148Updated 4 months ago
- Advanced Windows authentication token extraction and decryption tool for red team operations and security research☆82Updated last month
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆77Updated last year
- This C# tool sprays for admin access over the entire domain☆87Updated last month
- Microsoft Network Service Fingerprinting Tool☆64Updated 3 weeks ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆208Updated 4 months ago
- ☆59Updated 9 months ago
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆83Updated 2 years ago
- Linux post exploitation tool for info gathering and exfiltration 🐧📡💀☆90Updated 2 months ago