captain-woof / Hydrangea-C2-PayloadsLinks
A cross-platform, collaborative C2 for red-teaming. Agents are cross-compilable (e.g, you can generate Windows DLLs on Linux), cross-compatible, and built with evasion, anti-analysis and stability in mind. All capabilities are natively implemented from scratch.
☆24Updated 11 months ago
Alternatives and similar repositories for Hydrangea-C2-Payloads
Users that are interested in Hydrangea-C2-Payloads are comparing it to the libraries listed below
Sorting:
- various methods of making API calls☆19Updated last year
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆78Updated 5 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆84Updated last year
- ☆100Updated 2 years ago
- A work in progress BOF/COFF loader in Rust☆50Updated 2 years ago
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆136Updated 5 months ago
- Folder Or File Delete to Get System Shell on Current Session Desktop☆47Updated last year
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Updated last year
- ☆106Updated last year
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆119Updated last month
- ☆64Updated last year
- Select any exported function in a dll as the new dll's entry point.☆82Updated last year
- Section-based payload obfuscation technique for x64☆64Updated last year
- Dynamically resolve API function addresses at runtime in a secure manner.☆72Updated 3 months ago
- Sleep Obfuscation☆45Updated 3 years ago
- early cascade injection PoC based on Outflanks blog post, in rust☆62Updated last year
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆63Updated last year
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆66Updated 2 years ago
- A synergized Visual Studio and Rust development environment☆19Updated last year
- Shellcode Loader Utilizing ETW Events☆67Updated 11 months ago
- Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.☆129Updated 2 months ago
- From C, Rust or Zig to binary shellcode compiler based on Mingw gcc. It allows using Win32 APIs and standard libraries without any change…☆53Updated 4 months ago
- BOF for C2 framework☆44Updated last year
- a demo module for the kaine agent to execute and inject assembly modules☆41Updated last year
- Calling the undocumented DPAPI RPC interface directly, no more calling public CryptUnprotectData!☆66Updated last week
- FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…☆42Updated 10 months ago
- Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.☆75Updated 6 months ago
- ☆37Updated 3 years ago
- Early cascade injection PoC based on Outflanks blog post written in Rust☆67Updated last month
- remote process injections using pool party techniques☆70Updated 7 months ago