Shellcode injection using the Windows Debugging API
☆183Jan 4, 2026Updated 6 months ago
Alternatives and similar repositories for DbgNexum
Users that are interested in DbgNexum are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …☆102Jan 2, 2026Updated 6 months ago
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆69Jan 5, 2026Updated 6 months ago
- A Beacon Object File suite for Microsoft SQL Server that speaks TDS 7.4 on the wire itself☆98Apr 9, 2026Updated 2 months ago
- Cobalt Strike BOF☆58Dec 10, 2025Updated 6 months ago
- CVE-2025-59501 POC code☆26Nov 20, 2025Updated 7 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆42Aug 5, 2025Updated 11 months ago
- adws enumeration bof☆173Feb 16, 2026Updated 4 months ago
- modified mssqlclient from impacket to extract policies from the SCCM database☆48Feb 24, 2026Updated 4 months ago
- ☆55May 31, 2025Updated last year
- A simple to use single-include Windows API resolver☆22Jul 9, 2024Updated 2 years ago
- ☆85Feb 12, 2026Updated 4 months ago
- Enumerate active EDR's on the system☆153Sep 23, 2025Updated 9 months ago
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆127Dec 23, 2025Updated 6 months ago
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆152Feb 10, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Robust Cobalt Strike shellcode loader with multiple advanced evasion features☆205Apr 21, 2025Updated last year
- Indirect-Shellcode-Executor expoits the miss-configuration/vulnerability present on the API Windows method ReadProcessMemory discovered b…☆83Nov 15, 2025Updated 7 months ago
- Updated version of a long known self deletion technique to work with 24H2.☆62Jun 9, 2025Updated last year
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆139Jan 28, 2026Updated 5 months ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆70Jun 25, 2024Updated 2 years ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆306May 11, 2026Updated last month
- Self-cleaning in-memory PICO loader for Crystal Palace. Automatically erases traces and operates entirely in memory for stealthy payload …☆54Nov 2, 2025Updated 8 months ago
- Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…☆312Mar 28, 2026Updated 3 months ago
- Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames☆155Nov 23, 2025Updated 7 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Using call gadgets to break the call stack signature used by Elastic on proxying a module load. Provided as a Crystal Palace shared libra…☆88Nov 6, 2025Updated 8 months ago
- CyberShield 2025 Intro to EDR Evasion Class☆18Jun 3, 2025Updated last year
- A Qemu Proxmox Template builder project using Packer☆75Dec 5, 2025Updated 7 months ago
- Collection of UAC Bypass Techniques Weaponized as BOFs☆637Feb 21, 2024Updated 2 years ago
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆194May 23, 2026Updated last month
- A C# utility for interacting with SCOM☆101Dec 2, 2025Updated 7 months ago
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆35Jun 24, 2026Updated 2 weeks ago
- Random BOFs for LDAP tradecraft☆74Sep 9, 2025Updated 10 months ago
- Locate dlls and function addresses without PEB Walk and EAT parsing☆109Nov 7, 2025Updated 8 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Proof-of-Concept tool for extracting credential material from protected sessions on modern Windows systems.☆701May 9, 2026Updated last month
- ☆88May 15, 2025Updated last year
- Safe Harbor is a BOF that streamlines process reconnaissance for red team operations by identifying trusted, low-noise targets to maintai…☆81Oct 27, 2025Updated 8 months ago
- Helps defenders find their WSUS configurations in the wake of CVE-2025-59287☆46Oct 28, 2025Updated 8 months ago
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆267Jun 29, 2024Updated 2 years ago
- Docker container for running CobaltStrike 4.7 and above☆25Mar 20, 2025Updated last year
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆309Mar 29, 2026Updated 3 months ago