SafeBreach-Labs / MagicDot

Related projects ⓘ

Alternatives and complementary repositories for MagicDot

• Karkas66 / CelestialSpark
  A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust
  ☆83Updated 7 months ago
• joe-desimone / rep-research
  ☆68Updated 3 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆92Updated this week
• mansk1es / GhostFart
  ☆133Updated last year
• xpn / CloudInject
  ☆104Updated this week
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆75Updated last year
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆49Updated 9 months ago
• realoriginal / grimreaper
  A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
  ☆104Updated 2 months ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆74Updated 3 months ago
• xalicex / LOLDrivers_finder
  ☆73Updated last year
• Wh04m1001 / GamingServiceEoP5
  ☆27Updated 6 months ago
• dobin / RedEdr
  Collect Windows telemetry for Maldev
  ☆62Updated this week
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆83Updated 9 months ago
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆68Updated last year
• decoder-it / RelabelAbuse
  ☆59Updated 5 months ago
• eversinc33 / Godmode
  Tool for playing with Windows Access Token manipulation.
  ☆52Updated last year
• naksyn / Embedder
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆113Updated 5 months ago
• lap1nou / CLR_Heap_encryption
  ☆96Updated last year
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆58Updated 5 months ago
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆80Updated 9 months ago
• x0reaxeax / PageSplit
  Splitting and executing shellcode across multiple pages
  ☆99Updated last year
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated 4 months ago
• SafeBreach-Labs / CortexVortex
  ☆72Updated 7 months ago
• safedv / Rustic64
  64-bit, position-independent implant template for Windows in Rust.
  ☆77Updated last month
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆76Updated this week
• maliciousgroup / RDI-SRDI
  This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".
  ☆75Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆45Updated 8 months ago
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆51Updated last year
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆145Updated 11 months ago
• JanielDary / weetabix
  A C++ PoC implementation for enumerating Windows Fibers directly from memory
  ☆17Updated 6 months ago