accidentalrebel / shcode2exe
Compile shellcode into an exe file from Windows or Linux.
☆58Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for shcode2exe
- Bypass Malware Time Delays☆97Updated 2 years ago
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆32Updated 2 years ago
- ☆106Updated last year
- Collect Windows telemetry for Maldev☆57Updated this week
- Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…☆51Updated 2 years ago
- Overwrite a process's recovery callback and execute with WER☆102Updated 2 years ago
- RDLL for Cobalt Strike beacon to silence sysmon process☆85Updated 2 years ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆110Updated 4 months ago
- A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn☆100Updated last year
- ☆66Updated 11 months ago
- Standalone Metasploit-like XOR encoder for shellcode☆46Updated 6 months ago
- ☆73Updated last year
- ☆22Updated 2 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- ☆40Updated last year
- Files for http://blog.deniable.org/posts/windows-callbacks/☆67Updated 2 years ago
- Experiment on reproducing Obfuscate & Sleep☆139Updated 3 years ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆79Updated last year
- A Poc on blocking Procmon from monitoring network events☆98Updated 2 years ago
- A collection of source code, binaries, and compilation scripts designed to bypass detection☆25Updated last year
- Mochi is a proof-of-concept C++ loader that leverages the ChaiScript embedded scripting language to execute code.☆97Updated 2 years ago
- a stage1 DLL loader with sleep obfuscation☆32Updated last year
- A Bumblebee-inspired Crypter☆80Updated last year
- A simple commandline application to automatically decrypt strings from Obfuscator protected binaries☆38Updated 5 months ago
- ☆128Updated 2 years ago
- I have documented all of the AMSI patches that I learned till now☆68Updated last year
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆67Updated 9 months ago
- ☆133Updated last year