Tylous / FaceDancer
FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loading
☆205Updated last month
Related projects ⓘ
Alternatives and complementary repositories for FaceDancer
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆146Updated 6 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆190Updated 5 months ago
- A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.☆79Updated 2 weeks ago
- Nameless C2 - A C2 with all its components written in Rust☆239Updated last month
- ☆139Updated 4 months ago
- An interactive shell to spoof some LOLBins command line☆179Updated 9 months ago
- Extracting NetNTLM without touching lsass.exe☆223Updated 11 months ago
- Amazing whoami alternatives☆135Updated 7 months ago
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆154Updated 2 weeks ago
- Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…☆144Updated this week
- ☆181Updated 9 months ago
- A shellcode injection tool showcasing various process injection techniques☆133Updated 11 months ago
- GregsBestFriend process injection code created from the White Knight Labs Offensive Development course☆171Updated last year
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆143Updated 6 months ago
- ☆125Updated 3 months ago
- Continuous password spraying tool☆116Updated 5 months ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆95Updated last year
- ☆156Updated last year
- yet another AV killer tool using BYOVD☆263Updated 11 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆155Updated 3 weeks ago
- SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…☆125Updated this week
- My implementation of the GIUDA project in C++☆155Updated last year
- Open Source C&C Specification☆220Updated 3 weeks ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆144Updated this week
- ☆265Updated last year
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆138Updated 3 months ago
- Execute shellcode files with rundll32☆181Updated 9 months ago
- ☆280Updated 11 months ago
- AV/EDR Lab environment setup references to help in Malware development☆165Updated last week