d4rckh / WindowsPotatoesLinks
A list of windows potatoes!
☆25Updated 3 years ago
Alternatives and similar repositories for WindowsPotatoes
Users that are interested in WindowsPotatoes are comparing it to the libraries listed below
Sorting:
- ☆55Updated 3 years ago
- Mochi is a proof-of-concept C++ loader that leverages the ChaiScript embedded scripting language to execute code.☆103Updated 3 years ago
- RDPThief donut shellcode inject into mstsc☆87Updated 4 years ago
- D/Invoke implementation in Nim☆103Updated 3 years ago
- NimicStack is the pure Nim implementation of Call Stack Spoofing technique to mimic legitimate programs☆96Updated 3 years ago
- A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading☆84Updated 2 years ago
- Smart Card PIN swiping DLL☆78Updated 4 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆116Updated last year
- A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows☆53Updated 4 years ago
- Rewrote HellsGate in C# for fun and learning☆86Updated 3 years ago
- A BOF to parse the imports of a provided PE-file, optionally extracting symbols on a per-dll basis.☆85Updated 3 years ago
- Remove API hooks from a Beacon process.☆57Updated 3 years ago
- DoppelGate relies on reading ntdll on disk to grab syscall stubs, and patches these syscall stubs into desired functions to bypass Userla…☆122Updated 3 years ago
- ☆40Updated 4 years ago
- Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes☆108Updated 2 years ago
- From directory deletion to SYSTEM shell☆111Updated 5 years ago
- ☆59Updated 4 years ago
- A tool for converting SysWhispers2 syscalls for use with Nim projects☆121Updated 3 years ago
- Experiment on reproducing Obfuscate & Sleep☆146Updated 4 years ago
- .NET project for installing Persistence☆63Updated 3 years ago
- ☆101Updated 4 years ago
- Nim version of MDSec's Parallel Syscall PoC☆124Updated 3 years ago
- Unchain AMSI by patching the provider’s unmonitored memory space☆91Updated 2 years ago
- A fake AMSI Provider which can be used for persistence.☆151Updated 4 years ago
- maldev obviously☆27Updated 4 months ago
- Evasive Process Hollowing Techniques☆143Updated 5 years ago
- RDLL for Cobalt Strike beacon to silence sysmon process☆89Updated 2 years ago
- A quick example of the Hells Gate technique in Nim☆97Updated 4 years ago
- Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR☆103Updated 4 years ago
- PE Crypter written in Nim☆98Updated 4 years ago