ariary / QueenSonoView external linksLinks
Golang binary for data exfiltration with ICMP protocol (+ ICMP bindshell, http over ICMP tunneling, ...)
☆166Dec 10, 2021Updated 4 years ago
Alternatives and similar repositories for QueenSono
Users that are interested in QueenSono are comparing it to the libraries listed below
Sorting:
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 6 months ago
- A SigFlip implement in golang☆51Jan 5, 2022Updated 4 years ago
- Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,.…☆204Jul 2, 2024Updated last year
- Dirfuzz by golang☆15Feb 28, 2023Updated 2 years ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆30Sep 24, 2025Updated 4 months ago
- A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.☆162Sep 6, 2022Updated 3 years ago
- gozero: the wannabe zero dependency runtime for Go developers (experimental)☆24Jan 26, 2026Updated 2 weeks ago
- GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…☆331Sep 10, 2024Updated last year
- Unpacker for donut shellcode☆21Jun 20, 2020Updated 5 years ago
- Multi platform toolkit for an interactive DNS shell commands exfiltration, by using DNS-Cat you will be able to execute system commands i…☆114Sep 15, 2022Updated 3 years ago
- A stealth-focused C2 designed by Linux users for Linux environments, with native support for Windows and Linux BOFs.☆1,685Updated this week
- Small and convenient C2 tool for Windows targets☆612Mar 8, 2022Updated 3 years ago
- .Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py☆610Feb 16, 2023Updated 2 years ago
- Hide your payload in DNS☆617May 3, 2023Updated 2 years ago
- RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.☆1,562Aug 20, 2024Updated last year
- Ni-nuclei二开☆41Feb 24, 2024Updated last year
- DeimosC2 is a Golang command and control framework for post-exploitation.☆1,151Apr 17, 2025Updated 9 months ago
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆232Jun 10, 2022Updated 3 years ago
- The God Name Server☆36Updated this week
- Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions☆494Apr 1, 2021Updated 4 years ago
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,364Oct 27, 2023Updated 2 years ago
- An easy way to getsystem by golang.☆55Aug 30, 2021Updated 4 years ago
- Killing your preferred antimalware by abusing native symbolic links and NT paths.☆358Jan 29, 2022Updated 4 years ago
- Automatically spawn a reverse shell fully interactive for Linux or Windows victim☆356Apr 15, 2023Updated 2 years ago
- WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement☆369Dec 24, 2021Updated 4 years ago
- PowerShell Asynchronous TCP Reverse Shell☆158Nov 27, 2025Updated 2 months ago
- Woodpecker framework Tomcat vulnerability library☆15May 23, 2021Updated 4 years ago
- A collection of sample code used in some experiments with Sliver C2☆16Mar 28, 2023Updated 2 years ago
- Modular C2 framework aiming to ease post exploitation for red teamers.☆193May 22, 2022Updated 3 years ago
- ReflectiveDLL☆156Mar 16, 2020Updated 5 years ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Mar 27, 2025Updated 10 months ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆301Oct 26, 2022Updated 3 years ago
- Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…☆503May 16, 2023Updated 2 years ago
- SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature…☆1,253Aug 27, 2023Updated 2 years ago
- Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-softw…☆278Apr 4, 2023Updated 2 years ago
- Standalone utility for service discovery on open ports!☆690Jan 13, 2026Updated last month
- Obfuscate go binaries. 混淆 go 二进制文件中的函数名☆50Aug 18, 2021Updated 4 years ago
- Encrypted PE Loader Generator☆545Aug 13, 2021Updated 4 years ago
- PIC lsass dumper using cloned handles☆594Oct 18, 2022Updated 3 years ago