S3lrius / Nimalathatep

Related projects ⓘ

Alternatives and complementary repositories for Nimalathatep

• ajpc500 / NimlineWhispers2
  A tool for converting SysWhispers2 syscalls for use with Nim projects
  ☆118Updated 2 years ago
• Mr-Un1k0d3r / Elevate-System-Trusted-BOF
  ☆144Updated last year
• Octoberfest7 / DropSpawn_BOF
  CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
  ☆215Updated last year
• Octoberfest7 / KDStab
  BOF combination of KillDefender and Backstab
  ☆155Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆96Updated last year
• wsummerhill / CobaltStrike_BOF_Collections
  Useful Cobalt Strike BOFs found or used during engagements
  ☆131Updated last year
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆128Updated last year
• Haunted-Banshee / ErebusGate
  ErebusGate for Nim Bypass AV/EDR
  ☆159Updated 2 years ago
• G0ldenGunSec / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆121Updated 8 months ago
• klezVirus / NimlineWhispers3
  A tool for converting SysWhispers3 syscalls for use with Nim projects
  ☆138Updated 2 years ago
• VoldeSec / PatchlessInlineExecute-Assembly
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆152Updated last year
• ScriptIdiot / BOF-patchit
  An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…
  ☆119Updated 2 years ago
• mlcsec / ASRenum-BOF
  Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
  ☆138Updated 8 months ago
• Ghost53574 / havoc_profile_generator
  Havoc C2 profile generator
  ☆57Updated 2 weeks ago
• MaorSabag / SideLoadingDLL
  Do some DLL SideLoading magic
  ☆74Updated last year
• FalconForceTeam / BOF2shellcode
  POC tool to convert CobaltStrike BOF files to raw shellcode
  ☆173Updated 3 years ago
• Crypt0s / DelegationBOF
  ☆138Updated 2 years ago
• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆211Updated 2 years ago
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆148Updated 10 months ago
• whydee86 / SnD_AMSI
  Start new PowerShell without etw and amsi in pure nim
  ☆158Updated 2 years ago
• eversinc33 / Godmode
  Tool for playing with Windows Access Token manipulation.
  ☆51Updated last year
• Cerbersec / KillDefenderBOF
  Beacon Object File PoC implementation of KillDefender
  ☆214Updated 2 years ago
• S4ntiagoP / donut
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆110Updated last year
• xforcered / BOFMask
  ☆117Updated last year
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆75Updated 2 years ago
• x42en / sysplant
  Your syscall factory
  ☆122Updated last month
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆72Updated last year