Attack chain emulator. Write recipes for initial access easily
☆23Feb 26, 2025Updated last year
Alternatives and similar repositories for ace-firefist
Users that are interested in ace-firefist are comparing it to the libraries listed below
Sorting:
- Mythic C2 wrapper for NimSyscallPacker☆25Mar 12, 2025Updated last year
- A shellcode runner / injector / hollower in Go, for windows☆26May 22, 2022Updated 3 years ago
- PICO-Implant is a Proof of Concept C2 implant built using Position-independent Code Objects (PICO) for modular functionality. This projec…☆48Nov 9, 2025Updated 4 months ago
- Nim Shellcode Injector☆15Jan 24, 2021Updated 5 years ago
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆41Dec 8, 2023Updated 2 years ago
- BOF and C++ implementation of the Windows Defender sandboxing technique described by Elastic Security Labs/Gabriel Landau.☆24Jul 5, 2023Updated 2 years ago
- Logging tool intended for red team usage☆36Dec 5, 2025Updated 3 months ago
- Cross Compatible Command and Control☆47Dec 18, 2025Updated 3 months ago
- Crystal Palace RDLL loader for Adaptix C2 with Ekko sleep obfuscation, IAT hooking via PICO, and per-section permission restoration☆90Mar 15, 2026Updated last week
- ☆17Jan 9, 2025Updated last year
- Automated (kinda) deployment of MalRDP infrastructure with Terraform & Ansible☆12Sep 15, 2023Updated 2 years ago
- Splitting and executing shellcode across multiple pages☆103Jun 8, 2023Updated 2 years ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Jan 25, 2025Updated last year
- ☆19Nov 26, 2020Updated 5 years ago
- It's what all the kids are talking about☆12Apr 25, 2023Updated 2 years ago
- ☆42Jan 13, 2023Updated 3 years ago
- Click Once + App Domain☆67Feb 23, 2026Updated 3 weeks ago
- CVE-2013-4786 Go exploitation tool☆40Nov 18, 2025Updated 4 months ago
- A C and Go /proc/pid/maps cloak of invisibilty for shared object files☆21Nov 19, 2025Updated 4 months ago
- A VSCode plugin to assist with BOF development.☆37Aug 14, 2024Updated last year
- Fire-AV is a collection of lists that you can use to block av providers and bad ips☆21Mar 14, 2026Updated last week
- Load and execute a common object file format (COFF) in the current process☆32Mar 9, 2024Updated 2 years ago
- ☆61Jan 9, 2023Updated 3 years ago
- Implementation of SpoolSample without rDLL☆29Sep 28, 2020Updated 5 years ago
- Rust program for interfacing with the gigabyte driver to gain access to powerful primitives such as arbitrary kernel memcpy.☆17Nov 26, 2022Updated 3 years ago
- A different approach to writing BOFs in rust.☆19Aug 20, 2025Updated 7 months ago
- Just another casual shellcode native loader☆25Feb 3, 2022Updated 4 years ago
- Reflective DLL self-loading as a library☆21May 3, 2025Updated 10 months ago
- ☆12Feb 7, 2023Updated 3 years ago
- Examples of various container types for Python and Golang☆16Aug 29, 2025Updated 6 months ago
- A simple reverse ssh/proxy implant PoC for *nix systems.☆57Jul 5, 2024Updated last year
- ELF Beacon Object File (BOF) Template☆19Nov 18, 2024Updated last year
- ☆38Mar 28, 2025Updated 11 months ago
- ☆37Feb 11, 2023Updated 3 years ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆87Apr 11, 2023Updated 2 years ago
- ☆13Feb 25, 2023Updated 3 years ago
- event shipper for Carbon Black Defense notifications☆10Feb 25, 2023Updated 3 years ago
- ☆18Sep 14, 2023Updated 2 years ago
- A user enumeration tool for Slack.☆36Jun 10, 2024Updated last year