Tylous / FaceDancer
FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loading
☆207Updated last month
Related projects ⓘ
Alternatives and complementary repositories for FaceDancer
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆147Updated 6 months ago
- Python implementation of GhostPack's Seatbelt situational awareness tool☆196Updated last week
- A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.☆81Updated 3 weeks ago
- Nameless C2 - A C2 with all its components written in Rust☆242Updated last month
- An interactive shell to spoof some LOLBins command line☆180Updated 9 months ago
- AV/EDR Lab environment setup references to help in Malware development☆186Updated 2 weeks ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆190Updated 5 months ago
- Extracting NetNTLM without touching lsass.exe☆224Updated 11 months ago
- ☆142Updated last week
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆146Updated 3 weeks ago
- C2 infrastructure that allows Red Teamers to execute system commands on compromised hosts through Microsoft Teams.☆156Updated last week
- Continuous password spraying tool☆117Updated this week
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆158Updated 3 weeks ago
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆241Updated 3 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆163Updated last month
- Hide shellcode by shuffling bytes into a random array and reconstruct at runtime☆178Updated 4 months ago
- Extract and execute a PE embedded within a PNG file using an LNK file.☆237Updated 2 weeks ago
- Amazing whoami alternatives☆137Updated 7 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆143Updated 6 months ago
- Open Source C&C Specification☆221Updated last month
- SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…☆125Updated 2 weeks ago
- ☆267Updated last year
- ☆181Updated 9 months ago
- Python utility that generates "imageless" QR codes in various formats☆100Updated 3 months ago
- ☆280Updated 11 months ago
- NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.☆116Updated 2 weeks ago
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆201Updated 3 weeks ago
- GregsBestFriend process injection code created from the White Knight Labs Offensive Development course☆171Updated last year
- Spoofing desktop login applications with WinForms and WPF☆172Updated 9 months ago