badboycxcc / Brute-Ratel-C4Links
☆17Updated 4 months ago
Alternatives and similar repositories for Brute-Ratel-C4
Users that are interested in Brute-Ratel-C4 are comparing it to the libraries listed below
Sorting:
- ☆40Updated last year
- Kill Everything AV/EDR☆26Updated 6 months ago
- 一个普通的BOF用来BypassUAC☆22Updated last year
- Self Cleanup in post-ex job☆55Updated 8 months ago
- ☆26Updated last year
- vehsyscall:a syscall project that may bypass EDR☆59Updated last year
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆49Updated 2 years ago
- A Simple PoC☆21Updated last year
- Beacon compiled using clang☆69Updated 2 years ago
- frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can …☆51Updated 2 years ago
- 重构Beacon☆15Updated 9 months ago
- Fork & modify of Wireguard's Memmod☆32Updated last year
- Silently Install Chrome Extension For Persistence☆51Updated 10 months ago
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆14Updated last year
- BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel☆24Updated 11 months ago
- Bypass EDR Create TaskServers☆37Updated 2 years ago
- more conveniently Visual-Studio-BOF-template☆65Updated last year
- CVE-2023-21707 EXP☆28Updated last year
- ☆23Updated last month
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆43Updated last year
- Evasive loader to bypass static detection☆60Updated last year
- Execute Remote Assembly with args passing and with AMSI and ETW patching .☆33Updated 2 years ago
- Rust 重构的 sRDI☆14Updated 8 months ago
- kill AV/EDR☆22Updated last year
- load assembly executable file in memory☆41Updated last year
- Golang implement winrm client with pass the hash☆31Updated last year
- More EFS coerced authentication method with PetitPotam.py☆24Updated 2 years ago
- 看起来叫BabyBypass,实际啥都会记一些☆15Updated last year
- 一个demo☆25Updated last year
- Simulate per-process disconnection in red team environments☆30Updated this week