load arbitrary dlls, call any exported function, calls execute inside g0 as normal syscalls do from the traditional route, no syscall or windows imports, exposes many convenience functions for winapi interaction :3
☆28May 4, 2026Updated last month
Alternatives and similar repositories for go-wincall
Users that are interested in go-wincall are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Notion C2 Profile for Mythic☆47Apr 30, 2026Updated last month
- ☆28Mar 14, 2026Updated 2 months ago
- Windows backend input automation library in Go (Message + HID). A Go wrapper over Interception for reliable Windows input automation. 基于内…☆19May 20, 2026Updated 2 weeks ago
- Shellcode and In-PowerShell solution for patching AMSI via Page Guard Exceptions☆72Nov 15, 2025Updated 6 months ago
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆21Feb 8, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A high performance Eve Online multiboxing and client management tool for Linux + Windows systems | Join the Discord -> https://discord.g…☆45Updated this week
- A Windows kernel driver viewer and manager built in Rust — real-time enumeration, signature verification, SCM operations, and multi-for…☆148Mar 16, 2026Updated 2 months ago
- BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys.☆82Apr 11, 2026Updated last month
- Overview of MS Defender☆142Feb 20, 2026Updated 3 months ago
- Fluently detect security measures in software.☆34Updated this week
- ☆52Mar 30, 2026Updated 2 months ago
- abusing windows toast notifications for fun and user manipulation☆101May 30, 2026Updated last week
- This script allows us to perform an execution in the memory of the device without leaving traces for forensic analysts after its executio…☆12May 12, 2022Updated 4 years ago
- Convert your shellcode into an ASCII string☆128Jun 27, 2025Updated 11 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A headless MCP server for IDA Pro and Ghidra☆99Updated this week
- TLS fingerprint emulation upstream proxy replay any ClientHello☆48Apr 6, 2026Updated 2 months ago
- Opengraph-Compatible JSON Generator for BloodHound☆28Mar 30, 2026Updated 2 months ago
- WinAPI Hooking tool that can dump data written to processes or to files through IO.☆26Aug 24, 2024Updated last year
- Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.☆143Dec 8, 2025Updated 6 months ago
- ☆18Feb 14, 2025Updated last year
- Async BOF implementation of 'Rubeus monitor' to detect and automatically extract Kerberos TGTs as they appear on a target system.☆121Jun 2, 2026Updated last week
- ☆11Apr 23, 2019Updated 7 years ago
- A very much WIP Diablo II packet injection botting engine, hopefully someday able to enable clientless operation.☆16Mar 10, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Linux Shared Library to Shellcode Loader☆97Feb 15, 2026Updated 3 months ago
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆34Dec 31, 2025Updated 5 months ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- Templates for developing your own listeners and agents for AdaptixC2.☆51Feb 28, 2026Updated 3 months ago
- Cobaltstrike UDRL with memory evasion☆15May 16, 2024Updated 2 years ago
- Multi-protocol credential validation tool with spray and no-spray modes for penetration testing.☆29Jun 1, 2026Updated last week
- Novel Windows process injection: assembles existing open handles (process & thread), natural RWX regions, and special user APC (NtQueueAp…☆75Feb 17, 2026Updated 3 months ago
- Open KLara Project☆37May 18, 2026Updated 3 weeks ago
- An ARM64 Linux ELF Packer/Loader☆38Updated this week
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Windows Protected Process Light toggle tool — dynamically finds offsets and patches EPROCESS using RTCore64☆71May 2, 2025Updated last year
- BOF template with boflink and mutator kit support☆51Jan 8, 2026Updated 5 months ago
- ☆48Feb 12, 2026Updated 3 months ago
- Azure apim mini proxy☆59May 18, 2026Updated 3 weeks ago
- A BOF that's a BOF Loader and more☆206Apr 6, 2026Updated 2 months ago
- A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.☆160Apr 15, 2026Updated last month
- Microsoft Entra ID (Azure AD) Unauthenticated Enumeration☆76Feb 5, 2026Updated 4 months ago