load arbitrary dlls, call any exported function, calls execute inside g0 as normal syscalls do from the traditional route, no syscall or windows imports, exposes many convenience functions for winapi interaction :3
☆28May 4, 2026Updated last month
Alternatives and similar repositories for go-wincall
Users that are interested in go-wincall are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Notion C2 Profile for Mythic☆47Apr 30, 2026Updated last month
- ☆28Mar 14, 2026Updated 3 months ago
- Windows backend input automation library in Go (Message + HID). A Go wrapper over Interception for reliable Windows input automation. 基于内…☆19May 20, 2026Updated last month
- Shellcode and In-PowerShell solution for patching AMSI via Page Guard Exceptions☆72Nov 15, 2025Updated 7 months ago
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆21Feb 8, 2024Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A high performance Eve Online multiboxing and client management tool for Linux + Windows systems | Join the Discord -> https://discord.g…☆47Jun 7, 2026Updated 3 weeks ago
- A Windows kernel driver viewer and manager built in Rust — real-time enumeration, signature verification, SCM operations, and multi-for…☆153Mar 16, 2026Updated 3 months ago
- BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys.☆83Apr 11, 2026Updated 2 months ago
- Overview of MS Defender☆150Feb 20, 2026Updated 4 months ago
- Fluently detect security measures in software.☆34Jun 22, 2026Updated last week
- ☆52Jun 12, 2026Updated 2 weeks ago
- abusing windows toast notifications for fun and user manipulation☆103Jun 2, 2026Updated 3 weeks ago
- This script allows us to perform an execution in the memory of the device without leaving traces for forensic analysts after its executio…☆12May 12, 2022Updated 4 years ago
- Convert your shellcode into an ASCII string☆128Jun 27, 2025Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A headless MCP server for IDA Pro and Ghidra☆114Updated this week
- TLS fingerprint emulation upstream proxy replay any ClientHello☆52Apr 6, 2026Updated 2 months ago
- Opengraph-Compatible JSON Generator for BloodHound☆29Mar 30, 2026Updated 2 months ago
- WinAPI Hooking tool that can dump data written to processes or to files through IO.☆26Aug 24, 2024Updated last year
- Evade behavioral analysis by executing malicious code within trusted Microsoft call stacks, patchless hooking library IAT/EAT.☆145Dec 8, 2025Updated 6 months ago
- ☆17Feb 14, 2025Updated last year
- Async BOF implementation of 'Rubeus monitor' to detect and automatically extract Kerberos TGTs as they appear on a target system.☆125Jun 10, 2026Updated 2 weeks ago
- ☆12Apr 23, 2019Updated 7 years ago
- Linux Shared Library to Shellcode Loader☆98Feb 15, 2026Updated 4 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆35Dec 31, 2025Updated 5 months ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- Cobaltstrike UDRL with memory evasion☆15May 16, 2024Updated 2 years ago
- Templates for developing your own listeners and agents for AdaptixC2.☆55Feb 28, 2026Updated 4 months ago
- Multi-protocol credential validation tool with spray and no-spray modes for penetration testing.☆32Jun 1, 2026Updated 3 weeks ago
- Novel Windows process injection: assembles existing open handles (process & thread), natural RWX regions, and special user APC (NtQueueAp…☆75Feb 17, 2026Updated 4 months ago
- Open KLara Project☆37May 18, 2026Updated last month
- A Linux ELF Packer/Loader☆43Jun 12, 2026Updated 2 weeks ago
- Windows Protected Process Light toggle tool — dynamically finds offsets and patches EPROCESS using RTCore64☆73May 2, 2025Updated last year
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- BOF template with boflink and mutator kit support☆52Jan 8, 2026Updated 5 months ago
- ☆51Feb 12, 2026Updated 4 months ago
- Azure apim mini proxy☆61May 18, 2026Updated last month
- A BOF that's a BOF Loader and more☆208Apr 6, 2026Updated 2 months ago
- A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.☆163Apr 15, 2026Updated 2 months ago
- Microsoft Entra ID (Azure AD) Unauthenticated Enumeration☆78Feb 5, 2026Updated 4 months ago
- ClickForClickOnce - Generate configurable clickonce payloads☆96Apr 17, 2026Updated 2 months ago