SaadAhla / FilelessPELoader
Loading Remote AES Encrypted PE in memory , Decrypted it and run it
☆932Updated last year
Alternatives and similar repositories for FilelessPELoader
Users that are interested in FilelessPELoader are comparing it to the libraries listed below
Sorting:
- Syscall Shellcode Loader (Work in Progress)☆1,191Updated last year
- Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes☆968Updated last year
- Killer is a super simple tool designed to bypass AV/EDR security tools using various evasive techniques.☆806Updated 10 months ago
- HVNC for Cobalt Strike☆1,216Updated last year
- Cobalt Strike UDRL for memory scanner evasion.☆934Updated 11 months ago
- SysWhispers on Steroids - AV/EDR evasion via direct system calls.☆1,423Updated 9 months ago
- This repo contains : simple shellcode Loader , Encoders (base64 - custom - UUID - IPv4 - MAC), Encryptors (AES), Fileless Loader (Winhttp…☆416Updated last year
- kill anti-malware protected processes ( BYOVD) ( Microsoft Won)☆939Updated last year
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,230Updated last year
- A Highly capable Pe Packer☆699Updated 2 years ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆1,319Updated last year
- Lifetime AMSI bypass☆626Updated last year
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,177Updated last year
- A modern 32/64-bit position independent implant template☆1,210Updated last month
- DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.☆492Updated 2 years ago
- Another Windows Local Privilege Escalation from Service Account to System☆854Updated 2 years ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆679Updated 2 months ago
- .NET, PE, & Raw Shellcode Packer/Loader Written in Nim☆775Updated 2 years ago
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,078Updated 2 years ago
- ☆973Updated 2 months ago
- A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…☆636Updated 2 years ago
- Sleep Obfuscation☆752Updated last year
- Alternative Shellcode Execution Via Callbacks☆1,563Updated 2 years ago
- Collection of UAC Bypass Techniques Weaponized as BOFs☆508Updated last year
- Command and Control Framework written in C#☆403Updated last year
- An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting…☆1,020Updated 2 years ago
- Template-Driven AV/EDR Evasion Framework☆1,680Updated last year
- Spartacus DLL/COM Hijacking Toolkit☆1,039Updated last year
- Automated DLL Sideloading Tool With EDR Evasion Capabilities☆473Updated last year
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆917Updated 11 months ago