andrecrafts / hide-payload-in-imagesLinks
A project that demonstrates embedding shellcode payloads into image files (like PNGs) using Python and extracting them using C/C++. Payloads can be retrieved directly from the file on disk or from the image stored in a binary's resources section (.rsrc)
☆188Updated 6 months ago
Alternatives and similar repositories for hide-payload-in-images
Users that are interested in hide-payload-in-images are comparing it to the libraries listed below
Sorting:
- Embed a payload inside a PNG file☆347Updated 10 months ago
- EDR & Antivirus Bypass to Gain Shell Access☆245Updated 11 months ago
- Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.☆223Updated 4 months ago
- "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS☆297Updated 5 months ago
- ShadowPhish is an advanced APT awareness toolkit designed to simulate real-world phishing, malware delivery, deepfakes, smishing/vishing,…☆206Updated 5 months ago
- Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of…☆416Updated last month
- PowerShell Obfuscator☆200Updated 3 weeks ago
- ☆161Updated 6 months ago
- C# AV/EDR Killer using less-known driver (BYOVD)☆180Updated last year
- A script to generate AV evaded(static) DLL shellcode loader with AES encryption.☆137Updated 5 months ago
- This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at t…☆403Updated 3 months ago
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆152Updated last year
- PDF dropper Red Team Scenairos☆221Updated last year
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆379Updated 8 months ago
- Extract and execute a PE embedded within a PNG file using an LNK file.☆445Updated 10 months ago
- This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.☆140Updated 6 months ago
- Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…☆240Updated 5 months ago
- Cross platform (Linux / Windows) shellcode packer for CTFs and pentest / red team exams aiming for AV evasion !☆79Updated 3 weeks ago
- I will be uploading all the codes which I created with the help either opensource projects or blogs. This is a step by step EDR learning …☆283Updated last month
- Linux post-exploitation agent that uses io_uring to stealthily bypass EDR detection by avoiding traditional syscalls.☆308Updated 3 weeks ago
- yet another AV killer tool using BYOVD☆297Updated last year
- Python3 utility for creating zip files that smuggle additional data for later extraction☆257Updated 4 months ago
- CIA UAC bypass implementation of Stinger that obtains the token from an auto-elevated process, modifies it, and reuses it to execute as A…☆295Updated last year
- Evasive shellcode loader☆384Updated 11 months ago
- ☆335Updated 3 weeks ago
- Evade EDR's the simple way, by not touching any of the API's they hook.☆154Updated 7 months ago
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆198Updated 6 months ago
- The different ways to dump lsass☆117Updated last month
- A guide to learning antivirus evasion☆46Updated 5 months ago
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆154Updated last year