S3cur3Th1sSh1t / SharpRDP
Remote Desktop Protocol .NET Console Application for Authenticated Command Execution
☆11Updated 3 years ago
Alternatives and similar repositories for SharpRDP:
Users that are interested in SharpRDP are comparing it to the libraries listed below
- My implementation of Halo's Gate technique in C#☆53Updated 2 years ago
- C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)☆22Updated last year
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆52Updated 4 years ago
- Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…☆15Updated 2 years ago
- These are the slide decks and source code for Brute Ratel Seminar conducted on 24th August 2023. The youtube video for the seminar can be…☆19Updated last year
- ☆37Updated 2 years ago
- Bunch of BOF files☆27Updated last month
- ☆54Updated 3 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆78Updated 2 years ago
- API Hammering with C++20☆44Updated 2 years ago
- Just another ntdll unhooking using Parun's Fart technique☆73Updated last year
- Unchain AMSI by patching the provider’s unmonitored memory space☆88Updated 2 years ago
- Small tool to play with IOCs caused by Imageload events☆42Updated last year
- A BOF to interact with COM objects associated with the Windows software firewall.☆102Updated 3 years ago
- ☆19Updated 2 years ago
- A C# port of the MinHook API hooking library☆50Updated 2 years ago
- Section Mapping Process Injection (secinject): Cobalt Strike BOF☆91Updated 3 years ago
- Shellcode Injector that obtains system call opcodes using the Halo's Gate method to evade EDR Hooks.☆19Updated 2 years ago
- Offensive tool for fileless lateral movement on Windows networks☆25Updated 8 months ago
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆36Updated 2 years ago
- Halos Gate-based NTAPI Unhooker☆49Updated 2 years ago
- RDLL for Cobalt Strike beacon to silence sysmon process☆87Updated 2 years ago
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆39Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆35Updated 2 years ago
- A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading☆83Updated 2 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆78Updated 2 years ago
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆70Updated 11 months ago
- A proof of concept I developed to improve Gargoyle back in 2018 to achieve true memory obfuscation from position independent code☆43Updated 4 months ago
- Remove API hooks from a Beacon process.☆55Updated 2 years ago
- Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms☆115Updated 2 years ago