Tylous / Limelighter
A tool for generating fake code signing certificates or signing real ones
☆904Updated last year
Alternatives and similar repositories for Limelighter:
Users that are interested in Limelighter are comparing it to the libraries listed below
- Open-Source Shellcode & PE Packer☆1,925Updated last year
- EXOCET - AV-evading, undetectable, payload delivery tool☆838Updated 2 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆1,135Updated 4 years ago
- Template-Driven AV/EDR Evasion Framework☆1,651Updated last year
- LSASS memory dumper using direct system calls and API unhooking.☆1,520Updated 4 years ago
- My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+☆1,072Updated last year
- c++ fully undetected shellcode launcher ;)☆976Updated 3 years ago
- AV/EDR evasion via direct system calls.☆1,618Updated 2 years ago
- It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)☆499Updated 2 years ago
- Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs☆1,188Updated last year
- This program is designed to demonstrate various process injection techniques☆1,126Updated last year
- AV/EDR evasion via direct system calls.☆1,852Updated 2 years ago
- Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions☆483Updated 3 years ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆904Updated 9 months ago
- Create fake certs for binaries using windows binaries and the power of bat files☆558Updated last year
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.☆1,075Updated 11 months ago
- SysWhispers on Steroids - AV/EDR evasion via direct system calls.☆1,391Updated 8 months ago
- Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation☆957Updated 2 years ago
- Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands☆994Updated 3 years ago
- An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting…☆1,001Updated 2 years ago
- SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature…☆1,132Updated last year
- Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…☆857Updated 4 years ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆1,301Updated last year
- A tool to kill antimalware protected processes☆1,422Updated 3 years ago
- A unique technique to execute binaries from a password protected zip☆1,023Updated 2 years ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,795Updated last year
- A protective and Low Level Shellcode Loader that defeats modern EDR systems.☆900Updated last year
- Windows Privilege Escalation from User to Domain Admin.☆1,376Updated 2 years ago
- Syscall Shellcode Loader (Work in Progress)☆1,175Updated 10 months ago
- The swiss army knife of LSASS dumping☆1,893Updated 6 months ago