b1tg / cobaltstrike-beacon-rustLinks
CobaltStrike beacon in rust
☆207Updated last year
Alternatives and similar repositories for cobaltstrike-beacon-rust
Users that are interested in cobaltstrike-beacon-rust are comparing it to the libraries listed below
Sorting:
- ☆242Updated 2 years ago
- Shellcode loader designed for evasion. Coded in Rust.☆134Updated 2 years ago
- Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE☆205Updated 2 years ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.☆237Updated 8 months ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆248Updated last year
- Reuse open handles to dynamically dump LSASS.☆244Updated last year
- Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.☆202Updated 3 years ago
- A simple Sleepmask BOF example☆145Updated 4 months ago
- Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.☆268Updated last year
- Bypass Detection By Randomising ROR13 API Hashes☆144Updated 3 years ago
- Dumping LSASS with a duplicated handle from custom LSA plugin☆202Updated 3 years ago
- Windows LPE☆134Updated last year
- A Tool that aims to evade av with binary padding☆155Updated last year
- SharpSilentChrome is a C# project that "silently" installs browser extensions on Google Chrome or MS Edge by updating the browsers' Prefe…☆178Updated 2 months ago
- WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler☆130Updated 3 months ago
- Credential Guard Bypass Via Patching Wdigest Memory☆332Updated 2 years ago
- Execute shellcode from a remote-hosted bin file using Winhttp.☆237Updated 2 years ago
- A basic emulation of an "RPC Backdoor"☆243Updated 3 years ago
- CobaltWhispers is an aggressor script that utilizes a collection of Beacon Object Files (BOF) for Cobalt Strike to perform process inject…☆241Updated 2 years ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆419Updated last year
- ☆57Updated last year
- ☆160Updated 2 years ago
- An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…☆136Updated 3 years ago
- Weaponized HellsGate/SigFlip☆203Updated 2 years ago
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆320Updated last year
- PoC exploit for the vulnerable WatchDog Anti-Malware driver (amsdk.sys) – weaponized to kill protected EDR/AV processes via BYOVD.☆172Updated last month
- Write-up for another forgotten Windows vulnerability (0day): Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute…☆155Updated 2 years ago
- Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...☆170Updated last year
- Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC☆178Updated 3 years ago
- Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…☆78Updated last year