enigma522 / C2-framework

Related projects ⓘ

Alternatives and complementary repositories for C2-framework

• Quack2332 / Simple-C-Implant
  ☆12Updated 3 months ago
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆19Updated last week
• zer1t0 / keydump
  Dump Linux keyrings
  ☆15Updated 4 months ago
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆19Updated last year
• 7h3w4lk3r / Kill-Floor
  AV/EDR killer using BYOVD technique
  ☆21Updated last month
• Kharos102 / ReadWriteDriverSample
  ☆21Updated 6 months ago
• zimnyaa / beepsyscall
  An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.
  ☆11Updated last year
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆15Updated 3 months ago
• maxDcb / C2Implant
  Windows C++ Implant for Exploration C2
  ☆14Updated last week
• chebuya / Havoc-C2-SSRF-poc
  CVE-2024-41570: Havoc C2 0.7 Teamserver SSRF exploit
  ☆35Updated 2 months ago
• CyberSecurityUP / ProcessKiller-BYOVD
  BYOVD Technique Example using viragt64 driver
  ☆20Updated 3 months ago
• aqeisi / 7-ZipPostExp
  Post-Exploitation script to exfiltrate 7-zip files
  ☆10Updated 2 years ago
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆30Updated last year
• mobdk / WinSpoof
  Use TpAllocWork, TpPostWork and TpReleaseWork to execute machine code
  ☆21Updated last year
• florylsk / NtDump
  Indirect NT syscalls LSASS dumper.
  ☆36Updated last year
• OtterHacker / CoffLoader
  ☆48Updated last year
• ZephrFish / DynamicMSBuilder
  A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation
  ☆31Updated 7 months ago
• rbmm / PPL
  run process as PPL Antimalware
  ☆11Updated last year
• Idov31 / NidhoggCSharpApi
  C# API for Nidhogg rootkit
  ☆16Updated 6 months ago
• lokiuox / AdvancedLoader
  An advanced shellcode loader with many builtin features
  ☆13Updated last year
• aahmad097 / Test004
  Persistence via Shell Extensions
  ☆63Updated last year
• bryanroma / HollowSVC
  Windows Service with the implementation of the Process hollowing technique to run shellcode
  ☆14Updated last year
• wolfcod / beacondbg
  Beacon Debugger
  ☆35Updated 3 weeks ago
• sinsinology / CVE-2024-29855
  PoC for the Veeam Recovery Orchestrator Authentication CVE-2024-29855
  ☆17Updated 5 months ago
• smokeme / ProxyNotShell
  ☆18Updated 2 years ago
• tykawaii98 / CVE-2024-21338_PoC
  ☆38Updated 5 months ago
• p4p1 / havoc-store
  A simple website to act as a store for havoc modules and extensions
  ☆22Updated 6 months ago
• AlSch092 / ObfuscateThis
  Templated Obfuscation example in C++ for protecting/hiding values in memory
  ☆29Updated 8 months ago
• lem0nSec / Alcatraz
  An example of Windows self-replicating malware.
  ☆10Updated last year
• hackerhouse-opensource / Gigabyte_ElevatePersist
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆30Updated last year