SrujanKumar-K / AsyncRAT
Extracting AsyncRAT configuration using CyberChef
☆11Updated 2 years ago
Related projects: ⓘ
- ☆53Updated this week
- Repository for archiving Cobalt Strike configuration☆28Updated this week
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆61Updated 2 years ago
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆39Updated last year
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆20Updated this week
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆67Updated 7 months ago
- PoC-Malware-TTPs☆48Updated last year
- the Open Source and Pure C++ Packer for eXecutables☆18Updated last year
- Red Team Operation's Defense Evasion Technique.☆50Updated 3 months ago
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆79Updated last year
- Parses Cobalt Strike malleable C2 profiles.☆47Updated last week
- C# API for Nidhogg rootkit☆15Updated 4 months ago
- a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…☆49Updated last year
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- RDLL for Cobalt Strike beacon to silence sysmon process☆85Updated 2 years ago
- This is a CS project that will encrypt shell code from msfvenom using AES☆22Updated 2 years ago
- Unhook Ntdll.dll, Go & C++.☆11Updated 2 months ago
- API Hammering with C++20☆34Updated 2 years ago
- Working repo used to experiment with various languages as it relates to offensive security & evasion.☆28Updated 3 months ago
- DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…☆35Updated 4 months ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆31Updated last year
- This is my own implementation of the Perun's Fart technique by Sektor7☆64Updated 2 years ago
- ☆12Updated 4 years ago
- A method to execute shellcode using RegisterWaitForInputIdle API.☆50Updated last year
- A Python script that embeds Target VBS into LNK and when executed runs the VBS script from within.☆31Updated last year
- 「⚙️」Detect which native Windows API's (NtAPI) are being hooked☆36Updated last year
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆25Updated 2 years ago
- A direct improvement to remote TLS Injection.☆15Updated 3 months ago
- ☆50Updated 2 years ago
- ☆33Updated last year