audibleblink / dummyDLL
Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.
☆41Updated 2 years ago
Alternatives and similar repositories for dummyDLL:
Users that are interested in dummyDLL are comparing it to the libraries listed below
- Preventing 3rd Party DLLs from Injecting into your Malware☆25Updated 3 years ago
- ☆18Updated 3 years ago
- golang implementation of Syswhisper2/Syswhisper3☆23Updated 3 years ago
- BOF/COFF obj file to PIC(shellcode). by golang☆38Updated 2 years ago
- (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll☆43Updated 3 years ago
- ☆51Updated 5 years ago
- Simple PoCs for utilizing Windows syscalls in Go☆16Updated 4 years ago
- RDI implementation in Nim☆64Updated 4 years ago
- Imitate CobaltStrike's Shellcode Generation☆3Updated 3 years ago
- HookDetection☆46Updated 3 years ago
- ☆38Updated 4 years ago
- MacOS C2 Framework☆83Updated 3 years ago
- Golang Direct Syscall☆30Updated 3 years ago
- SharpDir is a simple code set to search both local and remote file systems for files and is compatible with Cobalt Strike.☆27Updated 5 years ago
- Ntdll Unhooking POC☆18Updated 2 years ago
- Proof of concept SMB C2 using named pipes in Golang☆25Updated 5 years ago
- ☆50Updated 4 years ago
- quick 'n dirty poc based on PoC windows auth prompt in c# based on https://gist.githubusercontent.com/mayuki/339952/raw/2c36b735bc51861a3…☆31Updated 4 years ago
- Reflectively load PE☆103Updated 4 years ago
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)☆32Updated 3 years ago
- x64 version☆34Updated 3 years ago
- Savoir is a tool to perform tasks during internal security assessment☆19Updated 2 years ago
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.☆112Updated 3 years ago
- StenographyShellcodeLoader☆43Updated 4 years ago
- Thanks to @d35ha☆13Updated 3 years ago
- Beacon Object Files.☆35Updated last year
- CVE-2019-1040 with Kerberos delegation☆33Updated 3 years ago
- backdoor c2☆38Updated 5 years ago
- ☆44Updated last week
- Its a coff loader ported to go( Modified by TimWhite )☆26Updated last year