Skeletal-Group / HermesView external linksLinks
Fast covert timing channel communication for inter-process and inter-processor communication on Windows systems.
☆68Nov 15, 2025Updated 3 months ago
Alternatives and similar repositories for Hermes
Users that are interested in Hermes are comparing it to the libraries listed below
Sorting:
- A Crystal Palace shared library to resolve & perform syscalls☆56Oct 29, 2025Updated 3 months ago
- Proof of Concept (PoC) implant for creating custom Cobalt Strike Beacons☆94Updated this week
- A lexer and parser for Sleep☆20May 14, 2025Updated 9 months ago
- The most extensive collection of BOFs (Beacon Object Files) tailored for Red Teams using C++23☆23Jun 19, 2025Updated 7 months ago
- A collection of PoCs to do common things in unconventional ways☆122Aug 31, 2025Updated 5 months ago
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆60Jan 5, 2026Updated last month
- Power Automate C2 (PAC2) : Stealth living-off-the-cloud C2 framework.☆36Apr 16, 2024Updated last year
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆78Aug 25, 2025Updated 5 months ago
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆128Jan 28, 2026Updated 2 weeks ago
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆119Dec 23, 2025Updated last month
- Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…☆198Jun 17, 2025Updated 7 months ago
- A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack☆97Dec 22, 2025Updated last month
- Help red teams find opsec processes during engagements☆42Dec 7, 2024Updated last year
- Linker for Beacon Object Files☆149Feb 8, 2026Updated last week
- BOF to steal Teams cookies☆123Nov 2, 2025Updated 3 months ago
- Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…☆157Nov 23, 2025Updated 2 months ago
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆163Nov 2, 2025Updated 3 months ago
- Impersonate Tokens using only NTAPI functions☆83Apr 4, 2025Updated 10 months ago
- A New Exploitation Technique for Visual Studio Projects☆11Nov 5, 2023Updated 2 years ago
- WinDbg cheat sheet☆16May 10, 2023Updated 2 years ago
- Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.☆28Sep 8, 2021Updated 4 years ago
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Apr 15, 2024Updated last year
- Rust implementation, creating a scheduled task programmatically with user logon trigger.☆47Jun 10, 2025Updated 8 months ago
- A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…☆113Dec 21, 2025Updated last month
- Hook syscalls from ring0 without triggering PatchGuard☆24Oct 29, 2025Updated 3 months ago
- arm64 linux position-independent shellcode framework☆29Dec 12, 2025Updated 2 months ago
- A cmake template for crystal palace☆38Dec 20, 2025Updated last month
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- Proof-of-concept kernel driver that hijacks the Windows kernel extension table mechanism to preserve process notify callbacks even when a…☆92Jul 7, 2025Updated 7 months ago
- ☆47Dec 5, 2025Updated 2 months ago
- An example reference design for a proposed BOF PE☆197Jan 23, 2026Updated 3 weeks ago
- 64-bit, position-independent implant template for Windows in Rust.☆172Nov 28, 2025Updated 2 months ago
- A tool to assist DLL hijacking via the Havoc GUI☆12Jan 9, 2024Updated 2 years ago
- Code execution/injection technique using DLL PEB module structure manipulation☆220Jun 4, 2025Updated 8 months ago
- A C#-implemented malware that dynamically modifies its own hash upon each execution to evade detection.☆17Feb 3, 2025Updated last year
- A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.☆14Oct 31, 2023Updated 2 years ago
- SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows applications installer and up…☆260Feb 2, 2026Updated last week
- Sleep obfuscation☆265Dec 13, 2024Updated last year
- Shellcode Loader Utilizing ETW Events☆67Feb 26, 2025Updated 11 months ago