ariary / fileless-xec
Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,...)
☆197Updated 9 months ago
Alternatives and similar repositories for fileless-xec:
Users that are interested in fileless-xec are comparing it to the libraries listed below
- A C2 framework for initial access in Go☆179Updated 2 years ago
- WIP shellcode loader in nim with EDR evasion techniques☆211Updated 3 years ago
- grim reaper c2☆336Updated 2 years ago
- Golang binary for data exfiltration with ICMP protocol (+ ICMP bindshell, http over ICMP tunneling, ...)☆146Updated 3 years ago
- Go shellcode loader that combines multiple evasion techniques☆363Updated last year
- indirect syscalls for AV/EDR evasion in Go assembly☆327Updated last year
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!☆324Updated 8 months ago
- ☆247Updated 2 years ago
- A Nim implementation of reflective PE-Loading from memory☆277Updated 7 months ago
- eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features☆96Updated 7 months ago
- (Demo) 3rd party agent for Havoc☆137Updated last year
- Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.☆377Updated 2 years ago
- A Beacon Object File (BOF) is a compiled C program, written to a convention that allows it to execute within a Beacon process and use int…☆172Updated last month
- A BOF to automate common persistence tasks for red teamers☆273Updated 2 years ago
- Golang PE injection on windows☆167Updated 3 years ago
- KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…☆219Updated last year
- Post-exploitation agent for Merlin☆193Updated this week
- Extendable payload obfuscation and delivery framework☆143Updated 2 years ago
- XLL Phishing Tradecraft☆413Updated 2 years ago
- shellcode loader for your evasion needs☆317Updated 5 months ago
- Various Cobalt Strike BOFs☆630Updated 2 years ago
- Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind☆447Updated last year
- A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.��☆449Updated last year
- ☆167Updated 3 years ago
- Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut☆333Updated 2 years ago
- Get fresh Syscalls from a fresh ntdll.dll copy☆228Updated 3 years ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆546Updated 3 months ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆455Updated 2 years ago
- Pass the Hash to a named pipe for token Impersonation☆301Updated last year
- Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.☆296Updated 2 years ago