am0nsec/SharpHellsGate external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

am0nsec/SharpHellsGate

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/am0nsec/SharpHellsGate)

Close

am0nsec / SharpHellsGateView on GitHubMore

• External links
• Readme badge

C# Implementation of the Hell's Gate VX Technique

☆216Jun 30, 2020Updated 5 years ago

Alternatives and similar repositories for SharpHellsGate

Users that are interested in SharpHellsGate are comparing it to the libraries listed below

• outflanknl / FindObjects-BOF

  View on GitHub
  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
  ☆275May 3, 2023Updated 2 years ago
• EncodeGroup / AggressiveProxy

  View on GitHub
  Project to enumerate proxy configurations and generate shellcode from CobaltStrike
  ☆140Nov 4, 2020Updated 5 years ago
• med0x2e / NoAmci

  View on GitHub
  Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
  ☆218Mar 5, 2020Updated 5 years ago
• DamonMohammadbagher / NativePayload_CBT

  View on GitHub
  NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)
  ☆118Jun 7, 2023Updated 2 years ago
• rsmudge / unhook-bof

  View on GitHub
  Remove API hooks from a Beacon process.
  ☆282Sep 18, 2021Updated 4 years ago
• NVISOsecurity / DInvisibleRegistry

  View on GitHub
  DInvisibleRegistry
  ☆82Nov 20, 2020Updated 5 years ago
• CCob / SharpBlock

  View on GitHub
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,163Mar 31, 2021Updated 4 years ago
• connormcgarr / cThreadHijack

  View on GitHub
  Beacon Object File (BOF) for remote process injection via thread hijacking
  ☆220Jan 13, 2021Updated 5 years ago
• cube0x0 / ParallelSyscalls

  View on GitHub
  C# version of MDSec's ParallelSyscalls
  ☆141Jan 9, 2022Updated 4 years ago
• FSecureLABS / Ninjasploit

  View on GitHub
  A meterpreter extension for applying hooks to avoid windows defender memory scans
  ☆249Aug 13, 2020Updated 5 years ago
• outflanknl / InlineWhispers

  View on GitHub
  Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)
  ☆321Nov 9, 2021Updated 4 years ago
• G0ldenGunSec / SharpSecDump

  View on GitHub
  .Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py
  ☆607Feb 16, 2023Updated 3 years ago
• outflanknl / WdToggle

  View on GitHub
  A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.
  ☆220May 3, 2023Updated 2 years ago
• nettitude / RunPE

  View on GitHub
  C# Reflective loader for unmanaged binaries.
  ☆446Jan 25, 2023Updated 3 years ago
• Accenture / CLRvoyance

  View on GitHub
  Managed assembly shellcode generation
  ☆280Mar 19, 2021Updated 4 years ago
• matterpreter / SHAPESHIFTER

  View on GitHub
  Companion PoC for the "Adventures in Dynamic Evasion" blog post
  ☆129May 25, 2021Updated 4 years ago
• mez-0 / CSharpWinRM

  View on GitHub
  .NET 4.0 WinRM API Command Execution
  ☆166Sep 11, 2020Updated 5 years ago
• b4rtik / SharpMiniDump

  View on GitHub
  Create a minidump of the LSASS process from memory
  ☆261Nov 2, 2022Updated 3 years ago
• am0nsec / HellsGate

  View on GitHub
  Original C Implementation of the Hell's Gate VX Technique
  ☆1,161Jun 28, 2021Updated 4 years ago
• jfmaes / SharpZipRunner

  View on GitHub
  Executes position independent shellcode from an encrypted zip
  ☆304Dec 22, 2020Updated 5 years ago
• ajpc500 / BOFs

  View on GitHub
  Collection of Beacon Object Files
  ☆633Nov 1, 2022Updated 3 years ago
• nettitude / SharpSocks

  View on GitHub
  Tunnellable HTTP/HTTPS socks4a proxy written in C# and deployable via PowerShell
  ☆498Mar 15, 2023Updated 2 years ago
• GetRektBoy724 / SharpUnhooker

  View on GitHub
  C# Based Universal API Unhooker
  ☆411Feb 18, 2022Updated 4 years ago
• klezVirus / CandyPotato

  View on GitHub
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆313Sep 16, 2021Updated 4 years ago
• ReversecLabs / physmem2profit

  View on GitHub
  Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely
  ☆425Jul 27, 2022Updated 3 years ago
• RedSiege / hot-manchego

  View on GitHub
  Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.
  ☆148Sep 7, 2020Updated 5 years ago
• forrest-orr / phantom-dll-hollower-poc

  View on GitHub
  Phantom DLL hollowing PoC
  ☆370May 23, 2022Updated 3 years ago
• RedLectroid / SearchOutlook

  View on GitHub
  A C# tool to search through a running instance of Outlook for keywords
  ☆111Jan 14, 2021Updated 5 years ago
• dtrizna / DInvoke_PoC

  View on GitHub
  Hardened Proof of Concept of D/Invoke Process Injection malware
  ☆42Jul 23, 2020Updated 5 years ago
• TheWover / DInvoke

  View on GitHub
  Dynamically invoke arbitrary unmanaged code from managed code without PInvoke.
  ☆772Dec 21, 2022Updated 3 years ago
• EncodeGroup / UAC-SilentClean

  View on GitHub
  New UAC bypass for Silent Cleanup for CobaltStrike
  ☆191Jul 14, 2021Updated 4 years ago
• med0x2e / GadgetToJScript

  View on GitHub
  A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …
  ☆1,080Jul 26, 2021Updated 4 years ago
• EspressoCake / PPLDump_BOF

  View on GitHub
  A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.
  ☆143Sep 24, 2021Updated 4 years ago
• trickster0 / TartarusGate

  View on GitHub
  TartarusGate, Bypassing EDRs
  ☆650Jan 25, 2022Updated 4 years ago
• n1xbyte / donutCS

  View on GitHub
  dem sharp donuts
  ☆202Sep 11, 2022Updated 3 years ago
• thefLink / RecycledGate

  View on GitHub
  Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll
  ☆498Feb 3, 2022Updated 4 years ago
• EncodeGroup / AggressiveGadgetToJScript

  View on GitHub
  A Cobalt Strike Aggressor script to generate GadgetToJScript payloads
  ☆101Sep 30, 2020Updated 5 years ago
• rvrsh3ll / CPLResourceRunner

  View on GitHub
  Run shellcode from resource
  ☆259Dec 13, 2020Updated 5 years ago
• ajpc500 / NimlineWhispers

  View on GitHub
  A very proof-of-concept port of InlineWhispers for using syscalls in Nim projects.
  ☆166Sep 10, 2021Updated 4 years ago