dr4ndrei / OHFFLdrView external linksLinks
One-header configurable C++20 COFF loader
☆21Jul 21, 2025Updated 6 months ago
Alternatives and similar repositories for OHFFLdr
Users that are interested in OHFFLdr are comparing it to the libraries listed below
Sorting:
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆57Apr 14, 2025Updated 10 months ago
- Power Automate C2 (PAC2) : Stealth living-off-the-cloud C2 framework.☆36Apr 16, 2024Updated last year
- ☆39Mar 28, 2025Updated 10 months ago
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆136Aug 31, 2025Updated 5 months ago
- Post-Ex BOF tooling for Hannibal☆24Nov 20, 2024Updated last year
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆38Aug 5, 2025Updated 6 months ago
- ☆17Jun 10, 2025Updated 8 months ago
- List of tools to use in the Advance Red Team Operations course from White Knight Labs☆14Dec 22, 2024Updated last year
- 🧠 The ultimate resource for finding Beacon Object Files (BOFs).☆104Updated this week
- A collection of sample code used in some experiments with Sliver C2☆16Mar 28, 2023Updated 2 years ago
- Thats it! An Open-Source Windows UEFI Rootkit☆28Jul 19, 2025Updated 6 months ago
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆116Jan 20, 2025Updated last year
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆135Apr 6, 2025Updated 10 months ago
- Dumping LSA secrets: a story about task decorrelation☆14Jul 9, 2024Updated last year
- Dynamic Indirect Syscalls via JOP/ROP in Pure no_std, no_alloc, no dependency Rust☆43Aug 6, 2025Updated 6 months ago
- ELF Beacon Object File (BOF) Template☆19Nov 18, 2024Updated last year
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- BOF to decrypt Signal Desktop chat logs☆71Feb 20, 2025Updated 11 months ago
- Brute Ratel External C2 (Microsoft Teams)☆38Dec 11, 2024Updated last year
- A pointer encryption library intended for Red Team implant design in Rust.☆64Oct 1, 2025Updated 4 months ago
- ☆33Mar 19, 2025Updated 10 months ago
- Locate dlls and function addresses without PEB Walk and EAT parsing☆104Nov 7, 2025Updated 3 months ago
- From C, Rust or Zig to binary shellcode compiler based on Mingw gcc. It allows using Win32 APIs and standard libraries without any change…☆53Sep 22, 2025Updated 4 months ago
- An ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.☆114Oct 6, 2025Updated 4 months ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆78Aug 25, 2025Updated 5 months ago
- converts sRDI compatible dlls to shellcode☆35Jan 20, 2025Updated last year
- A hacky way of getting cross-arch/platform support in Cobalt Strike☆37Aug 31, 2025Updated 5 months ago
- Tools I use on red team engagements and more☆33Mar 14, 2024Updated last year
- Self-mutating macOS implant☆121Dec 18, 2025Updated last month
- C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…☆196Dec 30, 2025Updated last month
- Payload Obfuscation for Red Teams workshop materials☆78Nov 25, 2025Updated 2 months ago
- GenZ Shellcode Generator to execute commands with winExec API☆22Apr 27, 2025Updated 9 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆104Feb 25, 2025Updated 11 months ago
- ☆139Jan 16, 2025Updated last year
- Random BOFs for LDAP tradecraft☆72Sep 9, 2025Updated 5 months ago
- Stage 0☆169Dec 18, 2024Updated last year
- A collection of position independent coding resources☆107Nov 15, 2025Updated 3 months ago
- Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability☆24Feb 5, 2025Updated last year
- Less sugar (entropy) for your binaries☆34Sep 10, 2025Updated 5 months ago