ariary / fileless-xecLinks
Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,...)
☆203Updated last year
Alternatives and similar repositories for fileless-xec
Users that are interested in fileless-xec are comparing it to the libraries listed below
Sorting:
- WIP shellcode loader in nim with EDR evasion techniques☆220Updated 3 years ago
- Golang binary for data exfiltration with ICMP protocol (+ ICMP bindshell, http over ICMP tunneling, ...)☆153Updated 3 years ago
- eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features☆100Updated 3 weeks ago
- A C2 framework for initial access in Go☆189Updated 3 years ago
- KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…☆223Updated 2 years ago
- grim reaper c2☆339Updated 2 years ago
- A Nim implementation of reflective PE-Loading from memory☆289Updated 11 months ago
- Get fresh Syscalls from a fresh ntdll.dll copy☆233Updated 3 years ago
- Process Ghosting Tool☆174Updated 4 years ago
- A technique of hiding malicious shellcode via Shannon encoding.☆258Updated 2 years ago
- Extendable payload obfuscation and delivery framework☆146Updated 2 years ago
- A BOF to automate common persistence tasks for red teamers☆285Updated 2 years ago
- Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527)☆198Updated 3 years ago
- Post-exploitation agent for Merlin☆201Updated 4 months ago
- indirect syscalls for AV/EDR evasion in Go assembly☆333Updated 2 years ago
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆336Updated last year
- ☆170Updated 4 years ago
- Go shellcode loader that combines multiple evasion techniques☆378Updated 2 years ago
- Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC☆177Updated 3 years ago
- WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement☆368Updated 3 years ago
- Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.☆380Updated 2 years ago
- ☆249Updated 2 years ago
- ☆208Updated 3 months ago
- Pure C++, weaponized, fully automated implementation of RottenPotatoNG☆309Updated 3 years ago
- Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon☆331Updated 3 years ago
- 🔎🪲 Malleable C2 profiles parser and assembler written in golang☆67Updated last year
- Simple PoC of the CVE-2023-23397 vulnerability with the payload sent by email.☆126Updated 2 years ago
- A basic emulation of an "RPC Backdoor"☆242Updated 3 years ago
- (Demo) 3rd party agent for Havoc☆141Updated 2 years ago
- A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.☆206Updated 2 years ago