byt3bl33d3r / NimDllSideload

Related projects ⓘ

Alternatives and complementary repositories for NimDllSideload

• x42en / sysplant
  Your syscall factory
  ☆121Updated 2 months ago
• ajpc500 / NimlineWhispers2
  A tool for converting SysWhispers2 syscalls for use with Nim projects
  ☆117Updated 2 years ago
• klezVirus / NimlineWhispers3
  A tool for converting SysWhispers3 syscalls for use with Nim projects
  ☆138Updated 2 years ago
• S3lrius / Nimalathatep
  Nim Payload Generation
  ☆59Updated last year
• frkngksl / NiCOFF
  COFF and BOF Loader written in Nim
  ☆168Updated 2 years ago
• zimawhit3 / Bitmancer
  Nim Library for Offensive Security Development
  ☆196Updated last year
• Mr-Un1k0d3r / AMSI-ETW-Patch
  Patch AMSI and ETW
  ☆232Updated 6 months ago
• nettitude / Tartarus-TpAllocInject
  ☆175Updated 11 months ago
• S4ntiagoP / donut
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆110Updated last year
• rasta-mouse / CsWhispers
  Source generator to add D/Invoke and indirect syscall methods to a C# project.
  ☆170Updated 8 months ago
• S3cur3Th1sSh1t / Nim_DInvoke
  D/Invoke implementation in Nim
  ☆99Updated 2 years ago
• smokeme / airstrike
  ☆155Updated 3 months ago
• nettitude / ETWHash
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆250Updated last year
• Haunted-Banshee / ErebusGate
  ErebusGate for Nim Bypass AV/EDR
  ☆159Updated 2 years ago
• eversinc33 / BouncyGate
  Indirect Syscalls: HellsGate in Nim, but making sure that all syscalls go through NTDLL (as in RecycledGate).
  ☆179Updated last year
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆128Updated last year
• WKL-Sec / dcomhijack
  Lateral Movement Using DCOM and DLL Hijacking
  ☆281Updated last year
• whydee86 / SnD_AMSI
  Start new PowerShell without etw and amsi in pure nim
  ☆157Updated 2 years ago
• Mr-Un1k0d3r / Elevate-System-Trusted-BOF
  ☆146Updated last year
• Octoberfest7 / DropSpawn_BOF
  CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
  ☆216Updated last year
• bohops / DynamicDotNet
  A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
  ☆135Updated 6 months ago
• nbaertsch / nimvoke
  Indirect syscalls + DInvoke made simple.
  ☆85Updated 3 weeks ago
• LloydLabs / shellcode-plain-sight
  Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak
  ☆174Updated last year
• Octoberfest7 / enumhandles_BOF
  ☆116Updated 2 months ago
• Helixo32 / SimpleEDR
  Simple EDR that injects a DLL into a process to place a hook on specific Windows API
  ☆88Updated last year
• waldo-irc / YouMayPasser
  You shall pass
  ☆249Updated 2 years ago
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆192Updated last year
• MzHmO / NtlmThief
  Extracting NetNTLM without touching lsass.exe
  ☆224Updated 11 months ago
• VoldeSec / PatchlessInlineExecute-Assembly
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆155Updated last year