Fast covert timing channel communication for inter-process and inter-processor communication on Windows systems.
☆73Mar 24, 2026Updated 3 months ago
Alternatives and similar repositories for Hermes
Users that are interested in Hermes are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- WinDbg cheat sheet☆17May 10, 2023Updated 3 years ago
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆69Jan 5, 2026Updated 6 months ago
- A collection of PoCs to do common things in unconventional ways☆120Aug 31, 2025Updated 10 months ago
- Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…☆165Nov 23, 2025Updated 7 months ago
- A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack☆109May 25, 2026Updated last month
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A Crystal Palace shared library to resolve & perform syscalls☆62Oct 29, 2025Updated 8 months ago
- Interprocess communication via a covert timing channel☆26Oct 24, 2025Updated 8 months ago
- Probably the easiest way to setup new beacon notifications in Cobalt Strike☆10Jan 7, 2022Updated 4 years ago
- A simple way to spoof return addresses using an exception handler☆43Aug 3, 2022Updated 3 years ago
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆127Dec 23, 2025Updated 6 months ago
- Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…☆205Jun 17, 2025Updated last year
- Power Automate C2 (PAC2) : Stealth living-off-the-cloud C2 framework.☆38Apr 16, 2024Updated 2 years ago
- arm64 linux position-independent shellcode framework☆31Dec 12, 2025Updated 6 months ago
- Proof of Concept (PoC) implant for creating custom Cobalt Strike Beacons☆212Feb 11, 2026Updated 4 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A cmake template for crystal palace☆42Dec 20, 2025Updated 6 months ago
- Terminate AV/EDR processes by exploiting the vulnerable NsecSoft driver☆32Sep 15, 2025Updated 9 months ago
- Rust implementation, creating a scheduled task programmatically with user logon trigger.☆47Jun 10, 2025Updated last year
- A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…☆121Dec 21, 2025Updated 6 months ago
- Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.☆28Sep 8, 2021Updated 4 years ago
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆139Jan 28, 2026Updated 5 months ago
- SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows applications installer and up…☆263Feb 2, 2026Updated 5 months ago
- An open-source tool for efficiently parsing x64dbg trace files (.trace32 & .trace64).☆49Jan 20, 2026Updated 5 months ago
- Help red teams find opsec processes during engagements☆44Dec 7, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A lexer and parser for Sleep☆20Feb 20, 2026Updated 4 months ago
- BOF to steal Teams cookies☆131Nov 2, 2025Updated 8 months ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆47Mar 3, 2026Updated 4 months ago
- C++ tool and library for converting .bin files to shellcode in multiple output formats.☆33Aug 18, 2025Updated 10 months ago
- Impersonate Tokens using only NTAPI functions☆85Apr 4, 2025Updated last year
- Easy to include string and wstring obfuscation☆25Mar 12, 2022Updated 4 years ago
- Hook syscalls from ring0 without triggering PatchGuard☆23Oct 29, 2025Updated 8 months ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆79Aug 25, 2025Updated 10 months ago
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆194May 23, 2026Updated last month
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆59Dec 30, 2025Updated 6 months ago
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- Demonstrates consuming from a SecurityTrace ETW session by consuming from the Threat-Intelligence ETW provider without a driver or PPL pr…☆79Jan 19, 2026Updated 5 months ago
- Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode☆161Jul 31, 2022Updated 3 years ago
- ☆164Jun 12, 2025Updated last year
- Hijacking Hyper-V at Runtime with DDMA☆142Aug 13, 2025Updated 10 months ago
- Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.☆74Jun 2, 2025Updated last year