byt3bl33d3r / NimDllSideload
DLL sideloading/proxying with Nim!
☆167Updated 2 years ago
Alternatives and similar repositories for NimDllSideload:
Users that are interested in NimDllSideload are comparing it to the libraries listed below
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆146Updated 2 years ago
- A tool for converting SysWhispers2 syscalls for use with Nim projects☆119Updated 3 years ago
- Your syscall factory☆121Updated last month
- ErebusGate for Nim Bypass AV/EDR☆161Updated 2 years ago
- COFF and BOF Loader written in Nim☆173Updated 2 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆254Updated last year
- Patch AMSI and ETW☆236Updated 11 months ago
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆142Updated 11 months ago
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking☆226Updated last year
- Patching AmsiOpenSession by forcing an error branching☆145Updated last year
- D/Invoke implementation in Nim☆101Updated 2 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆113Updated last year
- reflectively load and execute PEs locally and remotely bypassing EDR hooks☆150Updated last year
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆153Updated last year
- Nim Payload Generation☆61Updated last year
- Infect Shared Files In Memory for Lateral Movement☆194Updated 2 years ago
- POC for frustrating/defeating Malware Analysts☆154Updated 2 years ago
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆91Updated 2 years ago
- Simple BOF to read the protection level of a process☆115Updated last year
- Determine if the WebClient Service (WebDAV) is running on a remote system☆133Updated last year
- Nim Library for Offensive Security Development☆198Updated last year
- Start new PowerShell without etw and amsi in pure nim☆157Updated 3 years ago
- Beacon Object File & C# project to check LDAP signing☆189Updated 8 months ago
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆155Updated last month
- A new AMSI Bypass technique using .NET ALI Call Hooking.☆190Updated 2 years ago
- Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.☆224Updated 2 years ago
- Adversary Emulation Framework☆98Updated 9 months ago
- COFF file (BOF) for managing Kerberos tickets.☆294Updated last year
- ☆300Updated last year
- Source generator to add D/Invoke and indirect syscall methods to a C# project.☆177Updated last year