cocomelonc / 2022-04-02-malware-injection-18Links
Find kernel32 base and API addresses. Simple C++ implementation
☆24Updated 3 years ago
Alternatives and similar repositories for 2022-04-02-malware-injection-18
Users that are interested in 2022-04-02-malware-injection-18 are comparing it to the libraries listed below
Sorting:
- AV engines evasion for C++ simple malware part 1 source code☆13Updated 2 years ago
- ☆18Updated 7 months ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 3 years ago
- A compilation of Aggressor/Sleep scripts for operational purposes that I've made.☆11Updated 3 years ago
- ☆15Updated 3 years ago
- ☆19Updated 2 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆31Updated last year
- One gate to all syscalls!☆23Updated 3 years ago
- Beacon Object Files used for Cobalt Strike☆19Updated last year
- ShootCutMe an .LNK file creator tool for redteamer☆13Updated 8 months ago
- ☆15Updated last year
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆21Updated 2 years ago
- Ntdll Unhooking POC☆19Updated 2 years ago
- A PoC executing shellcode in Dart☆15Updated 2 years ago
- ☆14Updated 3 years ago
- ☆29Updated 2 years ago
- C# .Net 5.0 project to build BOF (Beacon Object Files) in mass☆28Updated last year
- Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082☆26Updated 2 years ago
- A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation☆36Updated last month
- ☆19Updated last year
- Offensive C#☆10Updated 4 years ago
- LibreHealth v2.0.0 suffers from an authenticated file upload vulnerability allowing remote attackers to gain remote code execution (RCE) …☆13Updated 4 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆14Updated 2 years ago
- The Totally Legit Authentication Dialog☆12Updated last year
- ☆21Updated 2 years ago
- Beacon payload using AV bypass method from https://github.com/fullmetalcache/CsharpMMNiceness and shellcode generated from https://github…☆20Updated 4 years ago
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆32Updated last year
- Use TpAllocWork, TpPostWork and TpReleaseWork to execute machine code☆22Updated 2 years ago
- Cobalt Strike Get clipboard plugin☆14Updated last year
- Repository for dirty scripts and PoCs☆17Updated 3 months ago