Xre0uS / KiD

Related projects ⓘ

Alternatives and complementary repositories for KiD

• TraiLeR2 / CVE-2023-36168
  An issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component
  ☆11Updated last year
• NUL0x4C / RecycleBinPersistence
  using the Recycle Bin to insure persistence
  ☆11Updated 2 years ago
• pwn1sher / RTImplant
  Just another casual shellcode native loader
  ☆24Updated 2 years ago
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆21Updated 4 months ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆30Updated 5 years ago
• LethalSnake1337 / PE-Loader-exercise
  A simple PE loader.
  ☆25Updated last year
• D4rthMaulCop / DarthNetLoader
  ☆14Updated last year
• thiagomayllart / DarkMelkor
  Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.
  ☆27Updated 3 years ago
• rbmm / DirectSysCall
  ☆12Updated last year
• ELMERIKH / Beryl
  Payload Dropper with Persistance & Privesc & UAC bypass 🐱‍👤
  ☆12Updated 7 months ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated last year
• xoreaxecx / PEmimic
  A PE morphing tool that allows you to mimic one executable file to another.
  ☆11Updated 11 months ago
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆14Updated 4 months ago
• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆24Updated last week
• rbmm / PfxViewer
  ☆10Updated this week
• shlyuz / teamserver
  ☆12Updated 2 years ago
• lem0nSec / SkeletonKey
  Reproducing the SkeletonKey malware.
  ☆11Updated 7 months ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆17Updated 3 months ago
• 0xflagplz / _x64_Loader
  Utilizing Alternative Shellcode Execution Via Callbacks
  ☆13Updated 11 months ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆16Updated last year
• EvanMcBroom / sleepy
  A lexer and parser for Sleep
  ☆11Updated this week
• fin3ss3g0d / HookFinder
  Simple PoC to locate hooked functions by EDR in ntdll.dll
  ☆32Updated last year
• rbmm / Hollowed-Process
  ☆26Updated last month
• Aetsu / drakus
  Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…
  ☆13Updated 3 years ago
• GetRektBoy724 / JALSI
  JALSI - Just Another Lame Shellcode Injector
  ☆30Updated 3 years ago
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated last year
• rbmm / Services
  ☆18Updated last year
• m8sec / EAPrimer
  C# project to Reflectively load .Net assemblies in memory
  ☆17Updated 5 months ago