WithSecureLabs / dotnet-gargoyle
A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique
☆51Updated 6 years ago
Alternatives and similar repositories for dotnet-gargoyle:
Users that are interested in dotnet-gargoyle are comparing it to the libraries listed below
- Loads .NET Assembly Via CLR Loader☆15Updated 5 years ago
- ☆18Updated 3 years ago
- Disable PPL via custom driver and dump lsass☆13Updated 3 years ago
- ☆14Updated 5 years ago
- ☆14Updated 4 years ago
- C# code to run PIC using CreateThread☆16Updated 5 years ago
- POC code to crash Windows Event Logger Service☆26Updated 4 years ago
- ☆47Updated 3 years ago
- ☆11Updated 5 years ago
- ☆24Updated 3 years ago
- Tool to manage user privileges☆28Updated 5 years ago
- ☆20Updated 3 years ago
- DLL hijacking vulnerability scanner and PE infector tool☆17Updated 7 years ago
- A C port of b33f's UrbanBishop☆38Updated 4 years ago
- ☆16Updated 3 years ago
- Extended Process List (Search functionality)☆29Updated 4 years ago
- Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.☆23Updated 4 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 2 years ago
- AMSI detection PoC☆31Updated 4 years ago
- ☆24Updated 2 years ago
- ☆45Updated 6 years ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆18Updated 3 years ago
- Initial Commit of Coresploit☆56Updated 3 years ago
- ☆28Updated 7 years ago
- My experience using Windows API for offensive purposes☆17Updated 3 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆51Updated 3 years ago
- A more advanced free and open .NET obfuscator using dnlib.☆10Updated 2 years ago
- Demos of Donut used in conferences, etc. Mostly for my use, but free for others to use as a reference.☆31Updated 5 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆20Updated 5 years ago