TunnelGRE / Percino

Related projects ⓘ

Alternatives and complementary repositories for Percino

• souzomain / Shaco
  Shaco is a linux agent for havoc
  ☆144Updated last year
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆163Updated last month
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆184Updated 9 months ago
• MzHmO / NtlmThief
  Extracting NetNTLM without touching lsass.exe
  ☆224Updated 11 months ago
• Flangvik / ObfuscatedSharpCollection
  Attempt at Obfuscated version of SharpCollection
  ☆189Updated last week
• kleiton0x00 / RemoteShellcodeExec
  Execute shellcode from a remote-hosted bin file using Winhttp.
  ☆225Updated last year
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆269Updated 3 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆143Updated 6 months ago
• VoldeSec / PatchlessCLRLoader
  .NET assembly loader with patchless AMSI and ETW bypass
  ☆278Updated last year
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆148Updated 8 months ago
• VoldeSec / PatchlessInlineExecute-Assembly
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆155Updated last year
• cybersectroll / TrollAMSI
  ☆142Updated last week
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆147Updated 6 months ago
• WKL-Sec / GregsBestFriend
  GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
  ☆171Updated last year
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆148Updated 10 months ago
• florylsk / SignatureGate
  Weaponized HellsGate/SigFlip
  ☆194Updated last year
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆171Updated 10 months ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆190Updated 5 months ago
• cxnturi0n / convoC2
  C2 infrastructure that allows Red Teamers to execute system commands on compromised hosts through Microsoft Teams.
  ☆156Updated last week
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆144Updated last year
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆130Updated last year
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆309Updated last year
• ZERODETECTION / MSC_Dropper
  ☆126Updated 3 months ago
• decoder-it / TokenStealer
  ☆156Updated last year
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆97Updated last year
• Cipher7 / ChaiLdr
  AV bypass while you sip your Chai!
  ☆208Updated 6 months ago
• mertdas / PrivKit
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆365Updated 5 months ago
• nettitude / Tartarus-TpAllocInject
  ☆175Updated 11 months ago