Teach2Breach / rekkoex
☆12Updated last month
Related projects: ⓘ
- Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD☆24Updated 8 months ago
- Donut generator in rust.☆21Updated 2 years ago
- Sliver agent rewritten in C++☆31Updated 2 weeks ago
- rust clr heap encryption (https://github.com/lap1nou/CLR_Heap_encryption), but no heap encryption.☆12Updated 8 months ago
- ☆48Updated last year
- This project is created for research into antivirus evasion by unhooking.☆15Updated 3 years ago
- ☆23Updated 4 months ago
- impersonate trustedinstaller by fiddling with tokens☆16Updated 3 years ago
- Repository for dirty scripts and PoCs☆16Updated last year
- A work in progress BOF/COFF loader in Rust☆38Updated last year
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…☆29Updated 2 years ago
- ComObject Shellcode Loader with fake return address☆12Updated 2 years ago
- ☆26Updated 2 years ago
- Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.☆27Updated 3 years ago
- A simple BOF (Beacon Object File) to search files in the system☆11Updated 9 months ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆17Updated last year
- Get your data from the resource section manually, with no need for windows apis☆52Updated last year
- Ntdll Unhooking POC☆19Updated 2 years ago
- x64 version☆30Updated 2 years ago
- Collection of self-made Red Team tools that have come in handy☆11Updated 3 weeks ago
- ☆38Updated 11 months ago
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆14Updated last year
- ☆29Updated last year
- ☆58Updated this week
- Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process☆40Updated last year
- Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)☆11Updated 2 years ago
- A flexible tool that creates a minidump of the LSASS process☆12Updated 2 years ago
- A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…☆20Updated 11 months ago
- old postex for grabbing a krbtgs for my current user☆28Updated last year
- Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…☆37Updated 4 years ago