The tool used to clone the digital signatures of legitimate programs
☆59Oct 11, 2025Updated 8 months ago
Alternatives and similar repositories for CertClone
Users that are interested in CertClone are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This tool helps inject code into the processes of Antivirus programs.☆190May 23, 2026Updated 3 weeks ago
- dcsync bof☆52Feb 13, 2026Updated 4 months ago
- A Windows tool that converts LDIF files to BloodHound CE☆32Dec 20, 2025Updated 5 months ago
- Mockingjay process self injection POC☆52Aug 8, 2023Updated 2 years ago
- Go-based C2 server inspired by Cobalt Strike; seamless agent control, web UI, and Malleable Profile support. Fast, extensible, and secure…☆32Updated this week
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- 2019年红队资源链接,资源不是本人整理出来,来自互联网,因为流传的少,特意在此做个备份,做个分享。☆16Aug 24, 2019Updated 6 years ago
- Virtual Trust Level (VTL 1) secure call tracing☆102Feb 12, 2026Updated 4 months ago
- A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user☆41Aug 15, 2024Updated last year
- 自定义函数堆栈,从而绕过ETW检测,这个是完整版。☆15Apr 15, 2024Updated 2 years ago
- Just a nice little shellcode loader using unconventional methods to avoid using signatured APIs☆24Jul 11, 2025Updated 11 months ago
- Original PoC for CVE-2023-30367☆17Jan 4, 2024Updated 2 years ago
- Windows process injection methods☆21Jul 18, 2021Updated 4 years ago
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆10Jul 25, 2023Updated 2 years ago
- Windows Driver Unit Test Framework☆30Aug 5, 2024Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ASPX Web Shell with COFF Loader☆130Mar 10, 2026Updated 3 months ago
- Less sugar (entropy) for your binaries☆33Sep 10, 2025Updated 9 months ago
- Detect BypassUAC using AMSI☆29Feb 18, 2025Updated last year
- Just a git repo for the sleepmask detection rule i found in https://codex-7.gitbook.io/codexs-terminal-window/blue-team/detecting-cobalt-…☆16Jun 4, 2025Updated last year
- The PoC for CVE-2025-70795 / CVE-2026-0828 and updated driver☆48Mar 13, 2026Updated 3 months ago
- ZREBypass 是一款专业的免杀处理工具,支持二进制文件、Shellcode 和 Webshell 的免杀处理,集成了反调试、反虚拟机、反沙箱等多种对抗技术☆37Nov 14, 2025Updated 7 months ago
- Two tools written in C that block network traffic for blacklisted EDR processes, using either Windows Defender Firewall (WDF) or Windows …☆269Sep 23, 2025Updated 8 months ago
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆13Jul 15, 2023Updated 2 years ago
- Beacon Object File (BOF) for identifying dependent child services of a given parent.☆19Jun 20, 2025Updated 11 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- All my POC related to malware development☆15Feb 19, 2026Updated 3 months ago
- ☆66Jan 22, 2026Updated 4 months ago
- An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.☆121Oct 6, 2025Updated 8 months ago
- AIDA64DRIVER Elevation of Privilege Vulnerability☆17Oct 25, 2024Updated last year
- Browser Bookmark that will ask for keyword(s) and then color highlight these words on the webpage you visit☆12Nov 15, 2023Updated 2 years ago
- ☆15Mar 30, 2022Updated 4 years ago
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…☆18Oct 31, 2024Updated last year
- A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, wit…☆296Feb 21, 2026Updated 3 months ago
- Modify managed functions from unmanaged code☆53Feb 1, 2024Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…☆16Jan 7, 2023Updated 3 years ago
- Very easy to use pdb parsing library with only one header file,You can use it even if you are a fool.☆12Feb 12, 2026Updated 4 months ago
- ☆14Jul 29, 2024Updated last year
- A PowerShell-based malware designed to completely disable all Windows security features, featuring UAC bypass and advanced anti-virtualiz…☆22Updated this week
- EDR/AV Simulation for Malware Development☆13Oct 21, 2023Updated 2 years ago
- A simple tool for enumerating dynamic endpoints on a DCE/RPC remote or local endpoint mapper.☆15Oct 9, 2020Updated 5 years ago
- 一个基于Go编写的轻便、小巧、快速的C&C框架☆51Apr 19, 2026Updated last month