ariary / fileless-xecLinks
Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,...)
☆206Updated last year
Alternatives and similar repositories for fileless-xec
Users that are interested in fileless-xec are comparing it to the libraries listed below
Sorting:
- Golang binary for data exfiltration with ICMP protocol (+ ICMP bindshell, http over ICMP tunneling, ...)☆167Updated 3 years ago
- WIP shellcode loader in nim with EDR evasion techniques☆220Updated 3 years ago
- A C2 framework for initial access in Go☆195Updated 3 years ago
- KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…☆226Updated 2 years ago
- eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features☆102Updated 4 months ago
- Extendable payload obfuscation and delivery framework☆145Updated 3 years ago
- grim reaper c2☆344Updated 3 years ago
- Get fresh Syscalls from a fresh ntdll.dll copy☆235Updated 3 years ago
- A BOF to automate common persistence tasks for red teamers☆292Updated 2 years ago
- A technique of hiding malicious shellcode via Shannon encoding.☆261Updated 3 years ago
- Process Ghosting Tool☆174Updated 4 years ago
- Automated compiler obfuscation for nim☆140Updated 3 years ago
- Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC☆179Updated 3 years ago
- ☆170Updated 4 years ago
- Golang PE injection on windows☆169Updated 4 years ago
- 🔎🪲 Malleable C2 profiles parser and assembler written in golang☆67Updated last year
- This project is 'bridge' between the sleep and python language. It allows the control of a Cobalt Strike teamserver through python withou…☆187Updated 4 months ago
- Simple PoC of the CVE-2023-23397 vulnerability with the payload sent by email.☆126Updated 2 years ago
- ☆245Updated 2 years ago
- Go shellcode loader that combines multiple evasion techniques☆385Updated 2 years ago
- Windows NTLM Authentication Backdoor☆241Updated 10 months ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆301Updated 3 years ago
- Post-exploitation agent for Merlin☆201Updated 7 months ago
- Escalate from a low-integrity Administrator account to NT AUTHORITY\SYSTEM without an LPE exploit by combining a COM UAC bypass and Token…☆161Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆312Updated 2 years ago
- Beacon Object File PoC implementation of KillDefender☆237Updated 3 years ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆336Updated last year
- A Nim implementation of reflective PE-Loading from memory☆295Updated last year
- Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic☆199Updated 4 months ago
- Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.☆382Updated 2 years ago