dsnezhkov / shutterLinks
☆120Updated 4 years ago
Alternatives and similar repositories for shutter
Users that are interested in shutter are comparing it to the libraries listed below
Sorting:
- A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading☆84Updated 2 years ago
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆145Updated last year
- RDLL for Cobalt Strike beacon to silence sysmon process☆89Updated 3 years ago
- ☆89Updated 3 years ago
- Implant drop-in for EDR testing☆143Updated last year
- Living Off the Foreign Land setup scripts☆70Updated 7 months ago
- Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies☆120Updated last year
- ☆74Updated 2 years ago
- ☆135Updated 7 months ago
- ☆137Updated 2 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆87Updated 2 years ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated last year
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆147Updated last year
- A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…☆102Updated 11 months ago
- Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post☆129Updated 2 years ago
- ☆112Updated 10 months ago
- Find .net assemblies locally☆125Updated 2 years ago
- Your syscall factory☆124Updated last week
- ☆158Updated 9 months ago
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆119Updated last year
- Serverless Redirector in various cloud vendor for red team☆72Updated 2 years ago
- Do some DLL SideLoading magic☆86Updated 2 years ago
- Python module for running BOFs☆72Updated 2 years ago
- C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.☆109Updated 2 years ago
- Lateral Movement via the .NET Profiler☆83Updated 10 months ago
- Simple BOF to read the protection level of a process☆119Updated 2 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆116Updated last year
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆75Updated last year
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆150Updated 2 years ago
- Find DLLs with RWX section☆81Updated 2 years ago