S3cur3Th1sSh1t / SharpUnhooker
C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)
☆22Updated 2 years ago
Alternatives and similar repositories for SharpUnhooker:
Users that are interested in SharpUnhooker are comparing it to the libraries listed below
- ☆26Updated 3 years ago
- ☆58Updated 3 years ago
- A BOF to interact with COM objects associated with the Windows software firewall.☆103Updated 3 years ago
- A care package of useful bofs for red team engagments☆55Updated 4 months ago
- The repository that complements the From zero to hero: creating a reflective loader in C# workshop☆38Updated 3 years ago
- Click Once + App Domain☆61Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆55Updated 3 years ago
- .NET project for installing Persistence☆64Updated 3 years ago
- Collection of Beacon Object Files (BOFs) for shells and lols☆118Updated 3 years ago
- Simple .NET loader for loading and executing Powershell payloads☆16Updated 3 years ago
- A VSCode devcontainer for development of COFF files with batteries included.☆48Updated last year
- Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes☆104Updated 2 years ago
- Beacon Object Files (not Buffer Overflows)☆54Updated 2 years ago
- ☆38Updated 2 years ago
- Halos Gate-based NTAPI Unhooker☆52Updated 3 years ago
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆52Updated 4 years ago
- cobalt strike tools☆31Updated 3 years ago
- ☆62Updated 2 years ago
- A BOF to parse the imports of a provided PE-file, optionally extracting symbols on a per-dll basis.☆85Updated 3 years ago
- ☆23Updated 3 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆81Updated 2 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆80Updated 2 years ago
- A C# port of the MinHook API hooking library☆52Updated 2 years ago
- ☆94Updated 2 years ago
- Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.☆40Updated 3 years ago
- Cobalt Strike beacon object file that allows you to query and make changes to the Windows Registry☆27Updated 4 years ago
- Scripts for public use that we've randomly written, or have updated from other people's work.☆40Updated 10 months ago
- Generate droppers with encrypted payloads automatically.☆54Updated 3 years ago
- A simplified version of DotNetToJScript to create a JScript file which loads a .NET v2 assembly from memory.☆47Updated 4 years ago