bananabr / CLRInjectorLinks
A PoC .NET-specific process injection tool
☆57Updated last year
Alternatives and similar repositories for CLRInjector
Users that are interested in CLRInjector are comparing it to the libraries listed below
Sorting:
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆86Updated 2 years ago
- ☆131Updated 2 years ago
- ☆50Updated 8 months ago
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆128Updated 2 weeks ago
- Click Once + App Domain☆64Updated 2 years ago
- ☆100Updated 2 years ago
- ☆75Updated 2 years ago
- ☆126Updated last year
- Modified versions of the Cobalt Strike Process Injection Kit☆105Updated 2 years ago
- Sliver agent rewritten in C++☆49Updated last year
- I have documented all of the AMSI patches that I learned till now☆75Updated 3 months ago
- ☆72Updated 3 years ago
- BypassCredGuard CS BOF☆48Updated last year
- EmbedExeLnk by x86matthew modified by d4rkiZ☆42Updated 2 years ago
- Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms☆134Updated 3 years ago
- ☆92Updated last year
- Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique☆158Updated 2 years ago
- Lockless BOF☆79Updated 9 months ago
- Lateral Movement via the .NET Profiler☆100Updated last year
- Cobalt Strike UDRL for memory scanner evasion.☆52Updated 2 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆82Updated 3 years ago
- ☆129Updated 2 years ago
- ☆122Updated 2 years ago
- Beacon Object Files (not Buffer Overflows)☆58Updated 2 years ago
- ☆83Updated last year
- ☆100Updated last year
- Simple BOF to read the protection level of a process☆119Updated 2 years ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆85Updated 9 months ago
- ☆26Updated last year
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆184Updated 3 months ago