WithSecureLabs / dotnet-gargoyle
A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique
☆50Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for dotnet-gargoyle
- AMSI detection PoC☆30Updated 4 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆28Updated 2 years ago
- ☆24Updated 2 years ago
- Extended Process List (Search functionality)☆27Updated 3 years ago
- ☆18Updated 3 years ago
- ☆28Updated 6 years ago
- ☆14Updated last year
- C# code to run PIC using CreateThread☆16Updated 5 years ago
- DLL hijacking vulnerability scanner and PE infector tool☆16Updated 7 years ago
- ☆14Updated 5 years ago
- ☆10Updated 4 years ago
- ☆14Updated 4 years ago
- ☆15Updated 3 years ago
- ☆45Updated 3 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆19Updated 4 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆50Updated 3 years ago
- A script that can be deployed to Azure App for C2 / Proxy / Redirector☆35Updated 5 years ago
- Tool to manage user privileges☆28Updated 5 years ago
- Loads .NET Assembly Via CLR Loader☆14Updated 5 years ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆18Updated 3 years ago
- ☆24Updated 3 years ago
- A C port of b33f's UrbanBishop☆37Updated 4 years ago
- A tool to create COM class/interface relationships in neo4j☆47Updated 2 years ago
- Specialized tool to dump Position Independent Code.☆21Updated 4 years ago
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆14Updated 3 years ago
- Demos of Donut used in conferences, etc. Mostly for my use, but free for others to use as a reference.☆31Updated 5 years ago