WKL-Sec / WinsockyLinks
Winsocket for Cobalt Strike.
☆98Updated last year
Alternatives and similar repositories for Winsocky
Users that are interested in Winsocky are comparing it to the libraries listed below
Sorting:
- Modified versions of the Cobalt Strike Process Injection Kit☆94Updated last year
- Simple LSASS Dumper created using C++ as an alternative to using Mimikatz memory dumper☆55Updated last year
- Alternative Shellcode Execution Via Callbacks in C# with P/Invoke☆77Updated 2 years ago
- CVE-2024-40711-exp☆42Updated 7 months ago
- ☆71Updated last year
- ☆80Updated last year
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.☆39Updated last year
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆155Updated last year
- ☆87Updated 2 years ago
- Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445☆45Updated last year
- Tool to bypass LSA Protection (aka Protected Process Light)☆53Updated 5 months ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated 2 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.☆83Updated 2 years ago
- ☆142Updated 2 years ago
- ☆125Updated last year
- A simple PoC of injection shellcode into a remote process and get the output using namepipe☆42Updated last year
- lsassdump via RtlCreateProcessReflection and NanoDump☆82Updated 7 months ago
- ☆47Updated last year
- Aggressor script add-in for CobaltStrike to track file uploads☆36Updated 2 years ago
- Library of BOFs to interact with SQL servers☆171Updated last month
- C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)☆55Updated 2 years ago
- ProcExp Driver (Ab)use☆22Updated 2 years ago
- To audit the security of read-only domain controllers☆117Updated last year
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆84Updated 2 years ago
- Little program written in C# to bypass EDR hooks and dump the content of the lsass process☆61Updated 3 years ago
- I have documented all of the AMSI patches that I learned till now☆72Updated 2 months ago
- Improved version of EKKO by @5pider that Encrypts only Image Sections☆119Updated 2 years ago
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution☆45Updated last year
- A spin-off research project. Cobalt Strike x Notion collab 2022☆53Updated 3 years ago
- Repository of scripts from my blog post on bypassing the YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellco…☆39Updated 7 months ago