Using Chromium-based browsers as a proxy for C2 traffic.
☆146Dec 6, 2025Updated 3 months ago
Alternatives and similar repositories for stillepost
Users that are interested in stillepost are comparing it to the libraries listed below
Sorting:
- Windows User-Mode Shellcode Development Framework (WUMSDF)☆126Nov 17, 2025Updated 3 months ago
- COM-based DLL Surrogate Injection☆142Dec 9, 2025Updated 3 months ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆30Sep 24, 2025Updated 5 months ago
- CVE-2025-59501 POC code☆25Nov 20, 2025Updated 3 months ago
- A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack☆99Dec 22, 2025Updated 2 months ago
- A tool that supports finding and abusing whitelisted programs to allow arbitrary file writing into the executable folder of Antivirus sof…☆82Nov 1, 2025Updated 4 months ago
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆128Jan 28, 2026Updated last month
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆194Feb 6, 2025Updated last year
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆86Oct 20, 2025Updated 4 months ago
- ☆126Jan 23, 2025Updated last year
- A C# utility for interacting with SCOM☆96Dec 2, 2025Updated 3 months ago
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆122Dec 23, 2025Updated 2 months ago
- A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure …☆19Mar 6, 2025Updated last year
- Cobaltstrike Reflective Loader with Synthetic Stackframe☆188Jan 17, 2026Updated last month
- A C# project that builds a Web Application which redirects all HTTPS☆26Feb 11, 2025Updated last year
- ForsHops☆152Mar 25, 2025Updated 11 months ago
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆95Jul 3, 2025Updated 8 months ago
- BOF to run PE in Cobalt Strike Beacon without console creation☆186Nov 23, 2025Updated 3 months ago
- Two tools written in C that block network traffic for blacklisted EDR processes, using either Windows Defender Firewall (WDF) or Windows …☆264Sep 23, 2025Updated 5 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆75May 1, 2024Updated last year
- An alternative to the builtin clipboard feature in Cobalt Strike that adds the capability to enable/disable and dump the clipboard histor…☆103Jan 9, 2026Updated 2 months ago
- ☆64Dec 19, 2024Updated last year
- Reaping treasures from strings in remote processes memory☆284Feb 8, 2025Updated last year
- A Crystal Palace shared library to resolve & perform syscalls☆57Oct 29, 2025Updated 4 months ago
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆286Jan 12, 2026Updated last month
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆187Jan 11, 2026Updated last month
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆63Jan 5, 2026Updated 2 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆124Jan 17, 2026Updated last month
- ☆138Nov 17, 2025Updated 3 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆191Apr 26, 2025Updated 10 months ago
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…☆64Apr 2, 2025Updated 11 months ago
- ☆33Mar 19, 2025Updated 11 months ago
- sigreturn-oriented programming (SROP) based sleep obfuscation poc for Linux☆66Dec 15, 2025Updated 2 months ago
- Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.☆240Feb 20, 2026Updated 2 weeks ago
- 🧠 The ultimate resource for finding Beacon Object Files (BOFs).☆107Updated this week
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆117Jan 20, 2025Updated last year
- A New Exploitation Technique for Visual Studio Projects☆11Nov 5, 2023Updated 2 years ago
- Stealthy In-Memory Local Password Harvester (SILPH) tool: dump LSA, SAM and DCC2 with indirect syscall☆132Dec 17, 2025Updated 2 months ago
- COM ViewLogger — new malware keylogging technique☆405Jan 6, 2025Updated last year