A C#-implemented malware that dynamically modifies its own hash upon each execution to evade detection.
☆17Feb 3, 2025Updated last year
Alternatives and similar repositories for PolymorphicSignature
Users that are interested in PolymorphicSignature are comparing it to the libraries listed below
Sorting:
- Attack Active Directory Trusts with a single tool☆14Jan 15, 2025Updated last year
- A tool to assist DLL hijacking via the Havoc GUI☆12Jan 9, 2024Updated 2 years ago
- An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD☆49Mar 10, 2025Updated 11 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆75May 1, 2024Updated last year
- tsh多终端代理通信☆19Feb 26, 2025Updated last year
- Shellcode Loader Utilizing ETW Events☆67Feb 26, 2025Updated last year
- 高版本Fastjson在Java原生反序列化中的利用演示☆26Jan 12, 2025Updated last year
- Docker container for running CobaltStrike 4.7 and above☆24Mar 20, 2025Updated 11 months ago
- ☆42Feb 18, 2025Updated last year
- Help red teams find opsec processes during engagements☆42Dec 7, 2024Updated last year
- SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…☆55Jul 13, 2025Updated 7 months ago
- string/file/shellcode encryptor using AES/XOR☆11Oct 15, 2023Updated 2 years ago
- Active Directory share enumeration tool☆12Apr 28, 2025Updated 10 months ago
- A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader☆45Sep 25, 2024Updated last year
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆25Sep 29, 2023Updated 2 years ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆88Mar 2, 2025Updated last year
- Detect BypassUAC using AMSI☆29Feb 18, 2025Updated last year
- Stack integrity verification to Detect SleepMask or CallStack Spoofer☆53Jul 13, 2025Updated 7 months ago
- 在线安软识别☆12Aug 6, 2025Updated 6 months ago
- BOF with Synthetic Stackframe☆225Oct 30, 2025Updated 4 months ago
- ☆17Jun 16, 2025Updated 8 months ago
- Dumping LSASS Evaded Endpoint Security Solutions☆18Feb 15, 2025Updated last year
- Port of Cobalt Strike's Process Inject Kit☆191Dec 1, 2024Updated last year
- A Crystal Palace shared library to resolve & perform syscalls☆56Oct 29, 2025Updated 4 months ago
- Mythic C2 Agent written in x64 PIC C☆85Jan 29, 2025Updated last year
- 此文件用于配套“卫界安全-阿呆攻防”中所涉及的代码类文档☆11Apr 26, 2025Updated 10 months ago
- Use Rust to implement some Red Team techniques :)☆13Nov 11, 2024Updated last year
- Just a nice little shellcode loader using unconventional methods to avoid using signatured APIs☆23Jul 11, 2025Updated 7 months ago
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- Get sql server connection configuration information☆28Aug 26, 2024Updated last year
- ☆54Oct 13, 2025Updated 4 months ago
- Locate dlls and function addresses without PEB Walk and EAT parsing☆104Nov 7, 2025Updated 3 months ago
- Hunting and injecting RWX 'mockingjay' DLLs in pure nim☆60Dec 11, 2024Updated last year
- A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…☆59Mar 17, 2025Updated 11 months ago
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆117Jan 20, 2025Updated last year
- A PoC UDRL for Cobalt Strike built with Crystal Palace that combines Raphael Mudge's page streaming technique with a modular call gate (D…☆97Jan 21, 2026Updated last month
- ☆13Mar 3, 2025Updated 11 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆13Feb 4, 2024Updated 2 years ago
- Basic Psexec clone, but in golang.☆16Jul 2, 2022Updated 3 years ago